Advisories » MGASA-2014-0489

Updated ruby-httpclient package enables SSL negotiation

Publication date: 26 Nov 2014
Modification date: 26 Nov 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3566

Description

This new version enables SSL negotiation instead of hardcoding SSLv3.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=14404
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

SRPMS

3/core

• ruby-httpclient-2.4.0-1.mga3

4/core

• ruby-httpclient-2.4.0-1.mga4