Changes between Version 3 and Version 4 of SecurityAnnouncement-FREAK
- Timestamp:
- 03/05/15 13:12:05 (9 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
SecurityAnnouncement-FREAK
v3 v4 1 The OpenSSL versions bundled in official OpenVPN ''Windows installers'' prior to 2.3.6-I002/I602 are vulnerable to [https://www.smacktls.com/ FREAK]. All users of the official OpenVPN Windows installers are encouraged to upgrade their OpenVPN installations or to take other measures (see below) to mitigate the attack s. OpenVPN users on *NIX typically get an updated OpenSSL version through their package management system and do not need to update OpenVPN.1 The OpenSSL versions bundled in official OpenVPN ''Windows installers'' prior to 2.3.6-I002/I602 are vulnerable to [https://www.smacktls.com/ FREAK]. All users of the official OpenVPN Windows installers are encouraged to upgrade their OpenVPN installations or to take other measures (see below) to mitigate the attack. OpenVPN users on *NIX typically get an updated OpenSSL version through their package management system and do not need to update OpenVPN. 2 2 3 3 Fortunately the vulnerability's impact on OpenVPN is fairly small: