You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2004/10/08 09:25:01 UTC
DO NOT REPLY [Bug 31505] -
SSLCipherSuite can be bypassed during renegotiation
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=31505>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=31505
SSLCipherSuite can be bypassed during renegotiation
jorton@redhat.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
Summary|reconfiguration of SSL |SSLCipherSuite can be
|cipher suites fails |bypassed during
| |renegotiation
------- Additional Comments From jorton@redhat.com 2004-10-08 07:24 -------
Thanks for reporting and fixing this, Hartmut. Since this is a security issue,
it has been assigned CVE name CAN-2004-0885 for tracking purposes.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org