So Adam Langley writes "SSLv3 decoding function was used with TLS, then the POODLE attack would work, even against TLS connections." on his the latest POODLE affecting TLS 1.x. (https://www.imperialviolet.org/).
I also received a notification from Symantec's DeepSight, that states: "OpenSSL CVE-2014-8730 Man In The Middle Information Disclosure Vulnerability". However, I could not find more information on OpenSSL's web-site about POODLE-biting-again. Did I miss any notification? Thanks. -Amarendra _______________________________________________ openssl-users mailing list openssl-users@openssl.org https://mta.opensslfoundation.net/mailman/listinfo/openssl-users
