Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 3673-2] openssl regression update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 3673-2] openssl regression update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Salvatore Bonaccorso <carnil AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 3673-2] openssl regression update
  • Date: Fri, 23 Sep 2016 20:17:53 +0000
  • List-archive: https://lists.debian.org/msgid-search/E1bnWuv-000727-Gd AT master.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-return-path: <carnil AT master.debian.org>
  • Priority: urgent
  • Resent-date: Fri, 23 Sep 2016 20:18:09 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <QB2suK4daUD.A.nbH.B4Y5XB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3673-2 security AT debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
September 23, 2016 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : openssl
Debian Bug : 838652 838659

It was discovered that the original patch applied for CVE-2016-2182 in
DSA-3673-1 was incomplete, causing a regression when parsing
certificates. Updated packages are now available to address this
problem.

For the stable distribution (jessie), this problem has been fixed in
version 1.0.1t-1+deb8u5.

We recommend that you upgrade your openssl packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=yUvu
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 3673-2] openssl regression update, Salvatore Bonaccorso, 23.09.2016

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang