Heads-up: Upcoming patch for a high-severity OpenSSL defect

https://mta.openssl.org/pipermail/openssl-announce/2016-January/000058.html

Forthcoming OpenSSL releases

The OpenSSL project team would like to announce the forthcoming
release of OpenSSL versions 1.0.2f, 1.0.1r.

These releases will be made available on 28th January between approx.
1pm and 5pm (UTC). They will fix two security defects, one of "high"
severity affecting 1.0.2 releases, and one "low" severity affecting all
releases.

[...]

Film Patton (1970) Quotes:

General Omar N. Bradley: There's one big difference between you and me, George. I do this job because I've been trained to do it. You do it because you LOVE it.

The people LOVE to do the job is far more important than trained or paid to do.

Give OpenSSL project team the thumbs up

https://dev.openwrt.org/browser/trunk/package/libs/openssl/Makefile

Last change on this file was 48531, checked in by nbd, 2 days ago
openssl: update to 1.0.2f (fixes CVE-2016-0701, CVE-2015-3197)

The openwrt team updated it in hours. :stuck_out_tongue:

Hello,

Should we install this ?
How ? Can we do this through opkg install opensll ?

Thanks
Leo