[arch-dev-public] [signoff] openssl 1.0.0.c-1

Pierre Schmitz pierre at archlinux.de
Thu Dec 2 21:02:44 CET 2010


Hi all,

here is an openssl security update which fixes CVE-2010-4180. It might
be possible for a client to downgrade the used cipher to a weaker one.
For more details see http://openssl.org/news/secadv_20101202.txt

Please sign off, so we can move this to core soon.

Greetings,

Pierre

-- 
Pierre Schmitz, https://users.archlinux.de/~pierre


More information about the arch-dev-public mailing list