OpenSSL and Potato a request for clarificiation

To: debian-security@lists.debian.org
Subject: OpenSSL and Potato a request for clarificiation
From: John Winters <john@linuxemporium.co.uk>
Date: 15 Sep 2002 12:42:04 +0100
Message-id: <[🔎] 1032090125.533.27.camel@unseen>

In the light of the recent reports of an exploit in OpenSSL I've been
reviewing my servers.  Some of them are still running Potato and the
status of the updates to Potato seem unclear.

The announcement on Debian Security Announce dated 30th July says that
no fix for Potato is available.  The latest update for Potato is dated
29th July and it *seems* to include the same fixes as Woody, although it
has a different version number.

Can anyone clarify this please?  Have the relevant fixes from openssl
0.9.6e been back-ported into openssl-0.9.6c-0.potato.2?

TIA,
John

Reply to:

Follow-Ups:
- Re: OpenSSL and Potato a request for clarificiation
  - From: Siggy Brentrup <bsb@winnegan.de>
- Re: OpenSSL and Potato a request for clarificiation
  - From: "Noah L. Meyerhans" <frodo@morgul.net>

Prev by Date: Re: bugtraq.c httpd apache ssl attack
Next by Date: icmp: type-#69
Previous by thread: Re: question from a newbie regarding possible trojan
Next by thread: Re: OpenSSL and Potato a request for clarificiation
Index(es):
- Date
- Thread