[tor-relays-fr] Fwd: [tor-relays] Security advisory: Please upgrade to today's OpenSSL.
Casper
fantom at fedoraproject.org
Jeu 25 Mar 19:54:17 UTC 2021
aucun pb :)
Chre a écrit :
> Bonjour à toutes et tous,
>
> Je vous fait suivre cette info si vous l'avez manquée, il faut mettre à jour
> OpenSSL sur vos serveurs Tor :)
>
>
> -------- Courriel original --------
> Objet: [tor-relays] Security advisory: Please upgrade to today's OpenSSL.
> Date: 2021-03-25 14:15
> De: Nick Mathewson <nickm at torproject.org>
> À: tor-relays at lists.torproject.org
> Répondre à: tor-relays at lists.torproject.org
>
> Hi, all!
>
> There is a new version of OpenSSL out today, with a security advisory
> that affects Tor. The vulnerability is CVE-2021-3449, as described on
> https://www.openssl.org/news/secadv/20210325.txt . It affects OpenSSL
> versions 1.1.1 through 1.1.1j. OpenSSL 1.1.1k is the first version
> with a fix.
>
> I haven't tested this bug, but I believe that it would allow an
> adversary to remotely crash Tor relays and authorities. It won't have
> any effect on Tor clients.
>
> I suggest that everybody should upgrade to the latest OpenSSL when it
> becomes available on their platform.
>
> best wishes,
>
> --
> Chre
> --
> tor-relays-fr mailing list
> tor-relays-fr at lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays-fr
--
GnuPG: AE157E0B29F0BEF2 at keys.openpgp.org
CA Cert: https://dl.casperlefantom.net/pub/ssl/root.der
-------------- section suivante --------------
Une pièce jointe autre que texte a été nettoyée...
Nom: signature.asc
Type: application/pgp-signature
Taille: 870 octets
Desc: non disponible
URL: <http://lists.torproject.org/pipermail/tor-relays-fr/attachments/20210325/f898a533/attachment.sig>
More information about the tor-relays-fr
mailing list