The charm leaves the server vulnerable to POODLE attack
Bug #1407732 reported by
Johan Ehnberg
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | ||
|---|---|---|---|---|---|---|
| owncloud (Juju Charms Collection) | Status tracked in Precise | |||||
| Precise |
Fix Released
|
Critical
|
José Antonio Rey | |||
| Trusty |
Fix Released
|
Critical
|
José Antonio Rey | |||
Bug Description
Changing /etc/apache2/
SSLProtocol All
to
SSLProtocol All -SSLv3
fixes this.
Related branches
lp:~jose/charms/trusty/owncloud/fix-poodle
- Charles Butler (community): Approve
- Review Queue (community): Needs Fixing (automated testing)
-
Diff: 15 lines (+4/-1)1 file modifiedhooks/config-changed (+4/-1)
lp:~jose/charms/precise/owncloud/fix-poodle
- Charles Butler (community): Approve
- Review Queue (community): Needs Fixing (automated testing)
-
Diff: 14 lines (+4/-0)1 file modifiedhooks/config-changed (+4/-0)
| information type: | Private Security → Public |
Revision history for this message
| José Antonio Rey (jose) wrote | #1 |
| Changed in owncloud (Juju Charms Collection): | |
| status: | New → Triaged |
| importance: | Undecided → Critical |
| assignee: | nobody → José Antonio Rey (jose) |
| Changed in owncloud (Charms Trusty): | |
| status: | New → In Progress |
| Changed in owncloud (Charms Precise): | |
| status: | Triaged → In Progress |
| Changed in owncloud (Charms Trusty): | |
| importance: | Undecided → Critical |
| assignee: | nobody → José Antonio Rey (jose) |
| status: | In Progress → Fix Committed |
| Changed in owncloud (Charms Precise): | |
| status: | In Progress → Fix Committed |
| Changed in owncloud (Charms Trusty): | |
| status: | Fix Committed → Fix Released |
| Changed in owncloud (Charms Precise): | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
Hello, Johan!
Be sure that I'm working on this right now. Thanks for the heads up!