tech-security archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

SA2010-011: why update libcrypto and librcypt?

To: tech-security%netbsd.org@localhost
Subject: SA2010-011: why update libcrypto and librcypt?
From: manu%netbsd.org@localhost (Emmanuel Dreyfus)
Date: Mon, 1 Nov 2010 13:45:13 +0200

Hi

SA2010-011 tells about a vulnerability in ssl3_get_key_exchange() and
explains how to update the system to fix it.

In the updating information, we aretold to rebuild and install libcrypt
and libcrypto. Is that necessary? None of them have a referecence to
ssl3_get_key_exchange().


-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu%netbsd.org@localhost

Follow-Ups:
- Re: SA2010-011: why update libcrypto and librcypt?
  - From: John Nemeth

Prev by Date: NetBSD Security Advisory 2010-011: OpenSSL Double Free Arbitrary Code Execution
Next by Date: Re: SA2010-011: why update libcrypto and librcypt?
Previous by Thread: NetBSD Security Advisory 2010-011: OpenSSL Double Free Arbitrary Code Execution
Next by Thread: Re: SA2010-011: why update libcrypto and librcypt?
Indexes:

Home | Main Index | Thread Index | Old Index