[openssl-users] "These are not the patches you are looking for"
rsalz at akamai.com
Mon Feb 29 01:40:34 UTC 2016
We recently posted some patches to to our public repo. Since they came out just before the announced security release, many people have been confused and thought that perhaps we posted CVE fixes prematurely. This is not the case. The commit were for fixing low-priority CVE issues, and according to our security policy (https://www.openssl.org/policies/secpolicy.html) were pushed as commits.
The release we pre-announced addresses other, more serious, issues.
Senior Architect, Akamai Technologies
IM: richsalz at jabber.at Twitter: RichSalz
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the openssl-users