USN-2232-3 -- OpenSSL regression
|ID: oval:org.secpod.oval:def:26417||Date: (C)2015-09-03 (M)2017-10-27|
|Class: PATCH||Family: unix|
openssl: Secure Socket Layer cryptographic library and tools Details: USN-2232-1 fixed vulnerabilities in OpenSSL. The upstream fix for CVE-2014-0224 caused a regression for certain applications that use renegotiation, such as PostgreSQL. This update fixes the problem. Original advisory USN-2232-1 introduced a regression in OpenSSL.