[OE-core] Truly scary SSL 3.0 vuln to be revealed soon:
Burton, Ross
ross.burton at intel.com
Wed Oct 15 10:07:27 UTC 2014
On 15 October 2014 07:48, Sona Sarmadi <sona.sarmadi at enea.com> wrote:
> The advice is: Disable SSLv3.
>
> I created https://bugzilla.yoctoproject.org/show_bug.cgi?id=6843 so we can start to work with this immediately.
Presumably the list of affected packages is:
- gnutls
- openssl
- nss
Are there more? Will ENEA be able to send patches to these packages?
Ross
More information about the Openembedded-core
mailing list