Re: FreeBSD Security Advisory FreeBSD-SA-14:06.openssl

看板FB_security作者時間11年前 (2014/04/10 02:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串9/14 (看更多)
On Wed, Apr 09, 2014 at 04:21:36PM +0200, Zoran Kolic wrote: > Advisory claims 10.0 only to be affected. Patches to > branch 9 are not of importance on the same level? The version of OpenSSL shipped in the base FreeBSD code prior to 10.0 is not vulnerable to the Heartbeat attack, however there is a different vulnerability which *is* in 8.x and 9.x and was documented in the advisory as [CVE-2014-0076] You should update 8.x and 9.x systems also, even though the vulnerability there is probably not as easy to exploit as the Heartbeat attack. Regards, Gary _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 gpalmer. 的文章
文章代碼(AID): #1JHOhWLy (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 9 之 14 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共14篇)
更多 gpalmer. 的文章
文章代碼(AID): #1JHOhWLy (FB_security)