[ I had to reconstruct the message from the online archive -- sorry if message
ID is screwed ]
On Tue, 8 Apr 2014 17:54:14 +0100
adys.wh at gmail.com (Jerome Leclanche) wrote:
> Slightly OT but for those interested, I added the heartbleed utility
> (used by the heartbleed checker site) to the A
> I actually did push an updated package within 3 hours after the public
> announcement. I think that is pretty reasonable especially since we are
> not among the fortunate distros and companies that were notified
> beforehand.
It's very good! Only a few distribution and vendors can do that!
What
Hi
On Tue, Apr 8, 2014 at 8:32 AM, Anatol Pomozov wrote:
> Hi
>
> On Tue, Apr 8, 2014 at 8:29 AM, Neal Oakey wrote:
>> Hi,
>>
>> there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
>> only been patched in 1.0.1g.
>> Many other Distributions have build there own patch, what is
Slightly OT but for those interested, I added the heartbleed utility
(used by the heartbleed checker site) to the AUR:
https://aur.archlinux.org/packages/heartbleed-git/
% heartbleed mediacru.sh:443
2014/04/08 17:53:57 mediacru.sh:443 - SAFE
J. Leclanche
On Tue, Apr 8, 2014 at 5:35 PM, Anatol Po
Hi
On Tue, Apr 8, 2014 at 9:29 AM, Pierre Schmitz wrote:
> Am 08.04.2014 17:29, schrieb Neal Oakey:
>> Hi,
>>
>> there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
>> only been patched in 1.0.1g.
>> Many other Distributions have build there own patch, what is with us?
>> Curr
Am 08.04.2014 17:29, schrieb Neal Oakey:
> Hi,
>
> there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
> only been patched in 1.0.1g.
> Many other Distributions have build there own patch, what is with us?
> Currently we have "1.0.1.f-2" which is effected as far as I can know.
On 08/04/2014 17:29, Neal Oakey wrote:
> Many other Distributions have build there own patch, what is with us?
As a reminder, there is now a Wiki page that tracks all security issues
and their status in Arch Linux [1]. If it's not there, please either add
the issue in the wiki by yourself and file
Hi,
ah ... ok kickt the top mirror - now I'm back up to date
tanks
Neal
Am 08.04.2014 17:32, schrieb y...@marupa.net:
> On Tuesday, April 08, 2014 05:29:11 PM Neal Oakey wrote:
>> Hi,
>>
>> there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
>> only been patched in 1.0.1g.
>>
> Currently we have "1.0.1.f-2" which is effected as far as I can know.
pacman -Syu should upgrade it to 1.0.1.g-1?
pacman -Q openssl reports that version anyway, which fixes heartbleed.
[1]
Greetings,
Zeger-Jan van de Weg
[1] https://www.openssl.org/news/secadv_20140407.txt
Hi
On Tue, Apr 8, 2014 at 8:29 AM, Neal Oakey wrote:
> Hi,
>
> there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
> only been patched in 1.0.1g.
> Many other Distributions have build there own patch, what is with us?
It is fixed already. The new version of openssl is in stab
% pacman -Si openssl
Repository : core
Name : openssl
Version: 1.0.1.g-1
Description: The Open Source toolkit for Secure Sockets Layer and
Transport Layer Security
Architecture : x86_64
URL: https://www.openssl.org
Licenses : custom:BSD
Groups :
On Tuesday, April 08, 2014 05:29:11 PM Neal Oakey wrote:
> Hi,
>
> there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
> only been patched in 1.0.1g.
> Many other Distributions have build there own patch, what is with us?
> Currently we have "1.0.1.f-2" which is effected as far
Hi,
there is an Bug(1) in OpenSSL 1.0.1 and as far as I'm informed this has
only been patched in 1.0.1g.
Many other Distributions have build there own patch, what is with us?
Currently we have "1.0.1.f-2" which is effected as far as I can know.
Greetings
Neal
1) (sry, German)
http://www.golem.de
13 matches
Mail list logo