[arch-dev-public] [signoff] openssl 1.0.0.c-1
Hi all, here is an openssl security update which fixes CVE-2010-4180. It might be possible for a client to downgrade the used cipher to a weaker one. For more details see http://openssl.org/news/secadv_20101202.txt Please sign off, so we can move this to core soon. Greetings, Pierre -- Pierre Schmitz, https://users.archlinux.de/~pierre
[2010-12-02 21:02:44 +0100] Pierre Schmitz:
here is an openssl security update which fixes CVE-2010-4180. It might be possible for a client to downgrade the used cipher to a weaker one. For more details see http://openssl.org/news/secadv_20101202.txt
signoff i686 -- Gaetan
Le jeudi 02 décembre 2010 15:02:44, Pierre Schmitz a écrit :
Hi all,
here is an openssl security update which fixes CVE-2010-4180. It might be possible for a client to downgrade the used cipher to a weaker one. For more details see http://openssl.org/news/secadv_20101202.txt
Please sign off, so we can move this to core soon.
Greetings,
Pierre
Signoff x86_64 Stéphane
On 12/02/2010 10:02 PM, Pierre Schmitz wrote:
Hi all,
here is an openssl security update which fixes CVE-2010-4180. It might be possible for a client to downgrade the used cipher to a weaker one. For more details see http://openssl.org/news/secadv_20101202.txt
Please sign off, so we can move this to core soon.
Greetings,
Pierre
signoff x86_64 -- Ionuț
participants (4)
-
Gaetan Bisson
-
Ionuț Bîru
-
Pierre Schmitz
-
Stéphane Gaudreault