[New-bugs-announce] [issue21671] CVE-2014-0224: OpenSSL upgrade to 1.0.1h on Windows required
Chris Lambacher
report at bugs.python.org
Thu Jun 5 19:29:22 CEST 2014
New submission from Chris Lambacher:
http://www.openssl.org/news/secadv_20140605.txt
All client versions of OpenSSL are vulnerable so all Windows builds of Python are vulnerable to MITM attacks when connecting to vulnerable servers.
----------
components: Build, Windows
messages: 219828
nosy: lambacck
priority: normal
severity: normal
status: open
title: CVE-2014-0224: OpenSSL upgrade to 1.0.1h on Windows required
versions: Python 2.7, Python 3.1, Python 3.2, Python 3.3, Python 3.4, Python 3.5
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue21671>
_______________________________________
More information about the New-bugs-announce
mailing list