Forum: Ruby-dev [Third Party's Issue] Please backport r44402

Announcement (2017-05-07): is now read-only since I unfortunately do not have the time to support and maintain the forum any more. Please see and for other Rails- und Ruby-related community platforms.
unknown (Guest)
on 2014-06-17 02:37
(Received via mailing list)
Issue #9870 has been updated by Akira Tanaka.

Status changed from Open to Third Party's Issue


openssl (1.0.1e-2+deb7u11) wheezy-security; urgency=medium

  * Update fix for CVE-2014-0224 to work with more renegiotation and
    resumption cases. (Closes: #751093)
  * Fix CVE-2012-4929 (CRiME) by disabling zlib compression by default.
    It can be enabled again by setting the environment variable
    OPENSSL_NO_DEFAULT_ZLIB.  (Closes: #728055)
  * Update ECDHE-ECDSA_Safari.patch to define
    again but to 0 so things keep building.  (Closes: #751457)

 -- Kurt Roeckx <>  Sun, 15 Jun 2014 12:31:21 +0200

Backport #9870: Please backport r44402

* Author: Hiroshi SHIBATA
* Status: Third Party's Issue
* Priority: Normal
* Assignee:
This topic is locked and can not be replied to.