Forum

PolarSSL vulnerability needs patching.

Josh Jones
24 January 2015, 06:43
Hiawatha version: ALL with PolarSSL > v1.0.0
Operating System: ALL

Not sure if you saw this yet Hugo:

https://www.certifiedsecure.com/polarssl-advisory/

Official patch:

https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2014-04

Please patch when you get a chance.

Thanks,
Hugo Leisink
24 January 2015, 10:48
Yes, I've seen it of course. I was one of the first to be warned by the PolarSSL developer himself. The current source tarball already contains the patch. I've also warned all users via twitter.
Josh Jones
24 January 2015, 18:03
Nice! Thanks Hugo!
This topic has been closed.