[Monotone-devel] possible SSL compromise

monotone-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Monotone-devel] possible SSL compromise

From:	Hendrik Boom
Subject:	[Monotone-devel] possible SSL compromise
Date:	Tue, 8 Apr 2014 15:25:30 -0400
User-agent:	Mutt/1.5.21 (2010-09-15)

I've just heard about a potential vulnerability in OpenSSL.  See
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=743883 for the Debian 
version of this problem.

In particular, the message states

all
keys used with vulnerable processes will need to be replaced both in
Debian infrastructure and by all users of this package.

I'm wondering whether monotone use is affected by this problem.  I 
don't know if it even uses OpenSSL or some other signature mechanism.

-- hendrik

[Prev in Thread]

Current Thread

[Next in Thread]

[Monotone-devel] possible SSL compromise, Hendrik Boom <=
- Re: [Monotone-devel] possible SSL compromise, Zbigniew Zagórski, 2014/04/09
  - Re: [Monotone-devel] possible SSL compromise, Hendrik Boom, 2014/04/09

Next by Date: Re: [Monotone-devel] possible SSL compromise
Next by thread: Re: [Monotone-devel] possible SSL compromise
Index(es):
- Date
- Thread