[Voodoo-circle-announce] Security update for VooDoo cIRCle
Brought to you by:
ghostvoodooman
Menu
▾
▴
[Voodoo-circle-announce] Security update for VooDoo cIRCle
|
From: Ghost V. <gho...@us...> - 2009-01-24 11:21:58
|
Greetings, There is both in the CVS repository and on sf.net site[1] the latest stable version of VooDoo cIRCle IRC bot, version 1.1.34. For Windows(TM) users, it is strongly recommended to update to the latest version. Serious vulnerability was reported in OpenSSL library, see OpenSSL's vendor advisory [2]. Binary distributions for Windows(TM) prior to version 1.1.34 are vulnerable (due to using of vulnerable DLL library). I encourage you to periodically visit VooDoo cIRCle security advisories site [3]. >From ChangeLog: Bug fix: Win32 binary release: There was vulnerable version of OpenSSL library: http://www.openssl.org/news/secadv_20090107.txt . References: [1] URL of the project: http://voodoo-circle.sourceforge.net/ [2] Please, see OpenSSL's vendor advisory: http://www.openssl.org/news/secadv_20090107.txt [3] URL of future security advisories: http://voodoo-circle.sourceforge.net/sa/ Please, see security advisory: http://voodoo-circle.sourceforge.net/sa/sa-20090123-01.html CVS instructions: $ cvs -d:pserver:ano...@vo...:/cvsroot/voodoo-circle login $ cvs -z3 -d:pserver:ano...@vo...:/cvsroot/voodoo-circle co -P voodoo-circle-src (two commands on two separate lines; on first command, when asked for password just hit ENTER/RETURN - an empty password) Don't forget to: $ chmod a+rx ./configure irc_bot/configure sendmail/configure \ vdcsvc/configure irc_bot/selftest_eval-test-1.sh With best regards, VooDooMan VooDoo cIRCle project . |
