OpenSSL in Gutsy needs updating pronto

George Orwell nobody at mixmaster.it
Mon Mar 10 10:30:05 UTC 2008


Was this read last year?

12-Oct-2007: Security Advisory: Various security issues
http://www.openssl.org/news/secadv_20071012.txt

especially where it says -

"We believe this flaw will permit remote code execution.

This vulnerability is tracked as CVE-2007-4995.

Versions Affected
-----------------

All releases of 0.9.8 prior to 0.9.8f"

Gutsy's current version is 0.9.8e, unless I'm incorrect isn't
this version vulnerable to this?

Why not update it for all users?

TIA

Il mittente di questo messaggio|The sender address of this
non corrisponde ad un utente   |message is not related to a real
reale ma all'indirizzo fittizio|person but to a fake address of an
di un sistema anonimizzatore   |anonymous system
Per maggiori informazioni      |For more info
                  https://www.mixmaster.it




More information about the Ubuntu-devel-discuss mailing list