Overview

Request 141054 accepted

- Due to the "CRIME attack" (CVE-2012-4929) HTTPS clients
that negotiate TLS-level compression can be abused for
MITM attacks. (w3m-openssl.patch)
- Use SSL_MODE_RELEASE_BUFFERS if available . (forwarded request 141015 from elvigia)

Request History
Marcus Meissner's avatar

msmeissn created request

- Due to the "CRIME attack" (CVE-2012-4929) HTTPS clients
that negotiate TLS-level compression can be abused for
MITM attacks. (w3m-openssl.patch)
- Use SSL_MODE_RELEASE_BUFFERS if available . (forwarded request 141015 from elvigia)

Saul Goodman's avatar

licensedigger accepted review

{"approve": "license and version number unchanged: 0.5.3"}

Factory Auto's avatar

factory-auto accepted review

Builds for repo openSUSE_Factory

Andreas Jaeger's avatar

a_jaeger accepted review

ok

Factory Auto's avatar

factory-auto added a reviewer

Please review sources

Andreas Jaeger's avatar

a_jaeger approved review

ok

Stephan Kulow's avatar

coolo accepted request

- Due to the "CRIME attack" (CVE-2012-4929) HTTPS clients
that negotiate TLS-level compression can be abused for
MITM attacks. (w3m-openssl.patch)
- Use SSL_MODE_RELEASE_BUFFERS if available . (forwarded request 141015 from elvigia)

openSUSE Build Service is sponsored by
Places