Ubuntu
openssl package

  1. Bug #1332643
  2. Comment #2

Comment 2 for bug 1332643

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package openssl - 1.0.1-4ubuntu5.16

---------------
openssl (1.0.1-4ubuntu5.16) precise-security; urgency=medium

  * SECURITY UPDATE: regression with certain renegotiations (LP: #1332643)
    - debian/patches/CVE-2014-0224-regression2.patch: accept CCS after
      sending finished ssl/s3_clnt.c.
 -- Marc Deslauriers <email address hidden> Fri, 20 Jun 2014 13:57:48 -0400