1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • Re: [SECURITY] [DSA 2981-1] polarssl security update (2/2)

    From =?UTF-8?Q?Malek_Ha=C3=AFssous?=@1:229/2 to All on Fri Jul 18 18:30:01 2014
    [continued from previous message]

    A flaw was discovered in PolarSSL, a lightweight crypto and SSL/TLS<br> library, which can be exploited by a remote unauthenticated attacker to<br> mount a denial of service against PolarSSL servers that offer GCM<br> ciphersuites. Potentially clients are affected too if a malicious server<br> decides to execute the denial of service attack against its clients.<br>

    For the stable distribution (wheezy), this problem has been fixed in<br> version 1.2.9-1~deb7u3.<br>

    For the testing distribution (jessie), this problem has been fixed in<br> version 1.3.7-2.1.<br>

    For the unstable distribution (sid), this problem has been fixed in<br>
    version 1.3.7-2.1.<br>

    We recommend that you upgrade your polarssl packages.<br>

    Further information about Debian Security Advisories, how to apply<br>
    these updates to your system and frequently asked questions can be<br>
    found at: <a href="http://www.debian.org/security/" target="_blank">http://www.debian.org/security/</a><br>

    Mailing list: <a href="mailto:[email protected]">[email protected]</a><br>
    -----BEGIN PGP SIGNATURE-----<br>
    Version: GnuPG v1<br>

    iQIcBAEBCgAGBQJTyTxWAAoJEAVMuPMTQ89EOtgP/jQTbv+uZvjTH1pW9YWdRifE<br> 1u1uqWvBhMySn/SpOi1M8gG8SbI0J3Zf2hhe619GWQTizIGyCsDf912j5EYMPZct<br> U+4GkGZvH6JSREHFHgzsj4Y284mO6tr4gEmx053tx1JyY4ZE4QCDwVWjXUw/jl6e<br> vi68m4vf/ul3Bo0oo4eivkAVewQf8zCf4M/nvpL0vKVRVzBaca8K9tEWNdN5vYvJ<br> MfjF35k6QmHlx1ntr9QwwaUPvuzhDE83CXtdNqKHvIiu31Q1sH7fDWHb+2EXQnJZ<br> qAa9a4Xz/cCNHNDYJdZKMqQ801b/FAE+WpMv/p+iKZJ+b8Qe4hi1jxnZFSCI8s5S<br> IAOiyM/xETZGjqywWxIzU8WBvYVRWZX82wL01Pq0uNMhNpdLC1PAV0ayi//4z0iK<br> Ep6O70bCAqxEUpNv71CWJdP/uZg38PCNiDgnV4Il6bXPVpW13l3nWzDKvQmLepdg<br> 32CJ2b93HG4oB9dK5PrAAXsI4q9H0pJihF4oSzqYrxvtk6kN5QGszTguCWNh0zlg<br> VGgejjww5zKO9vyJdaDoiCn+qBVL08FlTPEMBArulh3R+6D1ih8ftPDlZbNRVQXb<br> FCPqqZRIeIGBMPGGwmaTMrlC3QGjhJILJxqu5/SpCqGlG+/90cYDrlOwB/9oXtNn<br> uDyFK2A4oQPutCpJLH91<br>
    =/4R/<br>
    -----END PGP SIGNATURE-----<br>
    <span class="HOEnZb"><font color="#888888"><br>

    --<br>
    To UNSUBSCRIBE, email to <a href="mailto:[email protected]">[email protected]</a><br>
    with a subject of &quot;unsubscribe&quot;. Trouble? Contact <a href="mailto:[email protected]">[email protected]</a><br>
    Archive: <a href="https://lists.debian.org/[email protected]" target="_blank">https://lists.debian.org/[email protected]</a><br>

    </font></span></blockquote></div><br><br clear="all"><br>-- <br><div dir="ltr"><i>Malek HA</i><i><i>Ï</i>SSOUS<br>Étudiant Epitech Paris - Promo 2017<br><a href="mailto:[email protected]" target="_blank">[email protected]</a></i></div>


    </div>

    --001a11c35704a27a8f04fe79f100--


    --
    To UNSUBSCRIBE, email to [email protected]
    with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/CAKiK58TyHyJcKzg0Vjk7ZUj0CqJf7Ugo9gscoWbCXie9CUuS4A@mail.gmail.com

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)