Date: Fri, 16 Oct 2015 15:42:48 +0200 From: Andreas Stieger <astieger@...e.com> To: Agostino Sarubbo <ago@...too.org> Cc: oss-security@...ts.openwall.com Subject: Re: Qualys Security Advisory - LibreSSL (CVE-2015-5333 and CVE-2015-5334) Hello, On 10/16/2015 12:06 PM, Agostino Sarubbo wrote: > On Thursday 15 October 2015 17:54:16 Qualys Security Advisory wrote: > > We would like to thank the LibreSSL team for their great work and > > their incredibly quick response, > > Are these issues fixed upstream? > If yes, is there a release which fixes the issues? > If there isn't a release, do we have the link of the commit/diff? One could check http://www.libressl.org/releases.html > LibreSSL 2.2.4, 2.1.8, 2.0.6 (Oct 15, 2015) > OpenBSD Errata http://ftp.openbsd.org/pub/OpenBSD/patches/5.8/common/007_obj2txt.patch.sig Andreas -- Andreas Stieger <astieger@...e.com> Project Manager Security SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton, HRB 21284 (AG Nürnberg) Download attachment "signature.asc" of type "application/pgp-signature" (802 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.