New upstream release fixing security issues.
Note that SSLv2 was already disabled by default in Fedora OpenSSL.
sudo dnf upgrade --advisory=FEDORA-2016-2802690366
This update has been submitted for testing by tmraz.
This update has obsoleted openssl-1.0.2g-1.fc23, and has inherited its bugs and notes.
tmraz edited this update.
This one looks good, it preserves ABI.
+1, mod_ssl upstream test suite passes.
This update has been pushed to testing.
This update has been submitted for stable by bodhi.
Works well. No issues have noticed
This update has been pushed to stable.
Its severity needs to be 'High'. It fixes CVE-2016-0800 DROWN issue -> https://openssl.org/news/vulnerabilities.html#y2016
Notes about update should include such information.
No, because SSLv2 was already disabled before, this erratum does not really solve DROWN - it was already solved.
Please login to add feedback.
Submitting this will the tests again.
Copyright © 2007-2019 Red Hat, Inc. and
bodhi is Free Software.
if you have any problems. Read the documentation.