Overview

Request 141054 accepted

- Due to the "CRIME attack" (CVE-2012-4929) HTTPS clients
that negotiate TLS-level compression can be abused for
MITM attacks. (w3m-openssl.patch)
- Use SSL_MODE_RELEASE_BUFFERS if available . (forwarded request 141015 from elvigia)

Loading...
Request History
Marcus Meissner's avatar

msmeissn created request

- Due to the "CRIME attack" (CVE-2012-4929) HTTPS clients
that negotiate TLS-level compression can be abused for
MITM attacks. (w3m-openssl.patch)
- Use SSL_MODE_RELEASE_BUFFERS if available . (forwarded request 141015 from elvigia)


Saul Goodman's avatar

licensedigger accepted review

{"approve": "license and version number unchanged: 0.5.3"}


Factory Auto's avatar

factory-auto accepted review

Builds for repo openSUSE_Factory


Andreas Jaeger's avatar

a_jaeger accepted review

ok


Factory Auto's avatar

factory-auto added a reviewer

Please review sources


Andreas Jaeger's avatar

a_jaeger approved review

ok


Stephan Kulow's avatar

coolo accepted request

- Due to the "CRIME attack" (CVE-2012-4929) HTTPS clients
that negotiate TLS-level compression can be abused for
MITM attacks. (w3m-openssl.patch)
- Use SSL_MODE_RELEASE_BUFFERS if available . (forwarded request 141015 from elvigia)

openSUSE Build Service is sponsored by