You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@cloudstack.apache.org by John Kinsella <jl...@stratosec.co> on 2015/07/10 09:19:10 UTC

openssl/cloudstack

Folks - just put up a brief blog post about the latest OpenSSL issue and how that affects CloudStack. Long story short - we think it does, but are verifying that. Hopefully will have an update by the end of the day.

https://blogs.apache.org/cloudstack/entry/cloudstack_and_openssl_cve_2015

Will update here and on the blog/twitters as we know more.

John

Re: openssl/cloudstack

Posted by John Kinsella <jl...@stratosec.co>.

Update - looks like there’s no exposure to the vulnerability for us. The Debian images we use do not use a vulnerable version of OpenSSL.

Thanks for the patience!

John

On Jul 10, 2015, at 10:19 AM, John Kinsella <jl...@stratosec.co>> wrote:

Folks - just put up a brief blog post about the latest OpenSSL issue and how that affects CloudStack. Long story short - we think it does, but are verifying that. Hopefully will have an update by the end of the day.

https://blogs.apache.org/cloudstack/entry/cloudstack_and_openssl_cve_2015

Will update here and on the blog/twitters as we know more.

John

Re: openssl/cloudstack

Posted by John Kinsella <jl...@stratosec.co>.

Update - looks like there’s no exposure to the vulnerability for us. The Debian images we use do not use a vulnerable version of OpenSSL.

Thanks for the patience!

John

On Jul 10, 2015, at 10:19 AM, John Kinsella <jl...@stratosec.co>> wrote:

Folks - just put up a brief blog post about the latest OpenSSL issue and how that affects CloudStack. Long story short - we think it does, but are verifying that. Hopefully will have an update by the end of the day.

https://blogs.apache.org/cloudstack/entry/cloudstack_and_openssl_cve_2015

Will update here and on the blog/twitters as we know more.

John