[OE-core] [PATCH][dizzy] Update openssl to 1.0.1m
Brendan Le Foll
brendan.le.foll at intel.com
Thu Mar 26 14:39:34 UTC 2015
On Wed, Mar 25, 2015 at 07:32:20AM -0700, akuster808 wrote:
> On 3/25/15 6:15 AM, brendan.le.foll at intel.com wrote:
>
> Thank you for your support on Dizzy.
>
> If it isn't too mush trouble, is it possible to get the CVE's list are
> are being addressed by this update?
Here are the CVEs that are fixed by moving from 1.0.1j to 1.0.1m, note the
first is a 'High' the rest are moderate or below.
CVE-2015-0204
CVE-2014-3571
CVE-2015-0206
CVE-2014-3569
CVE-2014-3572
CVE-2015-0204
CVE-2015-0205
CVE-2014-8275
CVE-2014-3570
CVE-2015-0286
CVE-2015-0287
CVE-2015-0289
CVE-2015-0293
CVE-2015-0209
CVE-2015-0288
Cheers,
Brendan
More information about the Openembedded-core
mailing list