Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Sun, 13 Apr 2014 08:17:14 +0000
From: mancha <>
Subject: Re: Other instances of CVE-2014-0160 - mod_spdy from

On Tue, Apr 08, 2014 at 09:59:33PM -0600, Kurt Seifried wrote:
> So it appears there are projects that statically compile OpenSSL into
> their software, one example:
> I have to assume there are more. So if you know of any please post
> them to OSS-Security (and Full-Disclosure) so people can find out (and
> hopefully all the security scanners/etc. add them to their checks).

Three more for the list:





Content of type "application/pgp-signature" skipped

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ