[Bug 56363] New: OpenSSL security advisory - Heartbleed bug

bugzilla Tue, 08 Apr 2014 00:33:12 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=56363


            Bug ID: 56363
           Summary: OpenSSL security advisory - Heartbleed bug
           Product: Tomcat Native
           Version: 1.1.29
          Hardware: All
                OS: All
            Status: NEW
          Severity: critical
          Priority: P2
         Component: Library
          Assignee: dev@tomcat.apache.org
          Reporter: m...@normi.net

The binary builds of Tomcat Native 1.1.24 - 1.1.29 have been compiled with an
OpenSSL version vulnerable to Heartbleed, and are thus probably vulnerable. See
http://www.openssl.org/news/secadv_20140407.txt and http://heartbleed.com/

A new build using OpenSSL 1.0.1g would be very much appreciated.

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 56363] New: OpenSSL security advisory - Heartbleed bug

Reply via email to