<p>A new <a href="https://www.openssl.org/news/secadv_20150709.txt">security advisory</a> from the OpenSSL project relating to versions starting at 1.0.1n 1.0.2b.</p>
This issue affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o.
- OpenSSL 1.0.2b/1.0.2c users should upgrade to 1.0.2d
- OpenSSL 1.0.1n/1.0.1o users should upgrade to 1.0.1p
If you need direct support from the CSIRT, please contact Roderick Mooi (rmooi.at.csir.co.za)
Update - According to RedHat this CVE does not affect them. Presumably this includes derivates. Thanks @bazinski
Tagged with AAROC • CSIRT • operations • security • updates • CVE-2015-1793
This is a companion discussion topic for the original entry at http://www.africa-grid.org//security/2015/07/10/CVE-2015-1793/