[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Monotone-devel] possible SSL compromise
From: |
Hendrik Boom |
Subject: |
[Monotone-devel] possible SSL compromise |
Date: |
Tue, 8 Apr 2014 15:25:30 -0400 |
User-agent: |
Mutt/1.5.21 (2010-09-15) |
I've just heard about a potential vulnerability in OpenSSL. See
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=743883 for the Debian
version of this problem.
In particular, the message states
all
keys used with vulnerable processes will need to be replaced both in
Debian infrastructure and by all users of this package.
I'm wondering whether monotone use is affected by this problem. I
don't know if it even uses OpenSSL or some other signature mechanism.
-- hendrik
- [Monotone-devel] possible SSL compromise,
Hendrik Boom <=