From: Bodo Möller Date: Wed, 13 Feb 2002 10:21:25 +0000 (+0000) Subject: We should implement a countermeasure against the predictable-IV CBC X-Git-Tag: OpenSSL-engine-0_9_6c^2^2~23 X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=78d6603aadf51c3b5f70229be5456ae851ab6bbe;p=oweals%2Fopenssl.git We should implement a countermeasure against the predictable-IV CBC weakness in SSL/TLS --- diff --git a/STATUS b/STATUS index 87bd7798c8..3a6d0ae435 100644 --- a/STATUS +++ b/STATUS @@ -1,6 +1,6 @@ OpenSSL STATUS Last modified at - ______________ $Date: 2002/02/09 01:49:53 $ + ______________ $Date: 2002/02/13 10:21:25 $ DEVELOPMENT STATE @@ -49,6 +49,10 @@ NEEDS PATCH + o An (optional) countermeasure against the predictable-IV CBC + weakness in SSL/TLS should be added; see + http://www.openssl.org/~bodo/tls-cbc.txt + o All 'openssl' subprograms taking '-des' and '-des3' options should include AES support (0.9.7-dev)