[openssl-users] CVE-2016-2177

Sandeep Umesh sanumesh at in.ibm.com
Tue Aug 16 08:50:31 UTC 2016


Has this been officially published in openSSL ? Haven't seen a security
advisory for the same.


From:	"Salz, Rich" <rsalz at akamai.com>
To:	"openssl-users at openssl.org" <openssl-users at openssl.org>
Date:	08/13/2016 12:51 AM
Subject:	Re: [openssl-users] CVE-2016-2177
Sent by:	"openssl-users" <openssl-users-bounces at openssl.org>

Commit 6f35f6deb5ca7daebe289f86477e061ce3ee5f46 in 1.0.1

Senior Architect, Akamai Technologies
IM: richsalz at jabber.at Twitter: RichSalz

From: Scott Neugroschl [mailto:scott_n at xypro.com]
Sent: Friday, August 12, 2016 3:11 PM
To: openssl-users at openssl.org
Subject: [openssl-users] CVE-2016-2177

CVE 2016-2177 notes that it applies to all versions up to 1.0.2h.   Does
this mean that the fix is not applied to the 1.0.1 series (in particular

Scott Neugroschl | XYPRO Technology Corporation
4100 Guardian Street | Suite 100 |Simi Valley, CA 93063 | Phone 805
583-2874|Fax 805 583-0124 |

openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160816/a93b3544/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: graycol.gif
Type: image/gif
Size: 105 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160816/a93b3544/attachment.gif>

More information about the openssl-users mailing list