This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Cygwin64 v1.7.29: ruby 1.9.3p484 still vulnerable to Heartbleed bug

From: Robert Miesen <robert dot miesen at liturgica dot com>
To: cygwin at cygwin dot com
Date: Sat, 10 May 2014 10:17:16 -0700
Subject: Cygwin64 v1.7.29: ruby 1.9.3p484 still vulnerable to Heartbleed bug
Authentication-results: sourceware.org; auth=none

Hi everyone.

I recently installed the ruby package via Cygwin64 and, after running asimple script, discovered that the version of ruby installed by Cygwinalso installs version 1.0.1f of the OpenSSL library, which is vulnerableto the Heartbleed bug.


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

Follow-Ups:
- Re: Cygwin64 v1.7.29: ruby 1.9.3p484 still vulnerable to Heartbleed bug
  - From: Yaakov (Cygwin/X)

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]