Re: CVS-2010-3864: OpenSSL TLS session caching buffer overun: any bearing?

Darren Tucker Wed, 17 Nov 2010 09:33:31 -0800

On 17/11/10 10:01 AM, Mark Lavi wrote:

Does the CVE-2010-3864 vulnerability for OpenSSL:
http://marc.info/?l=3Dopenssl-users&m=3D128992473131301&w=3D2
...have any bearing on OpenSSH?


No.  It's in libssl which OpenSSH does not even link against.

--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

Re: CVS-2010-3864: OpenSSL TLS session caching buffer overun: any bearing?

Reply via email to