This bug was fixed in the package openssl - 1.0.1f-1ubuntu6
--------------- openssl (1.0.1f-1ubuntu6) utopic; urgency=medium
* SECURITY UPDATE: regression with certain renegotiations (LP: #1332643) - debian/patches/CVE-2014-0224-regression2.patch: accept CCS after sending finished ssl/s3_clnt.c. -- Marc Deslauriers <email address hidden> Fri, 20 Jun 2014 13:51:23 -0400
This bug was fixed in the package openssl - 1.0.1f-1ubuntu6
---------------
openssl (1.0.1f-1ubuntu6) utopic; urgency=medium
* SECURITY UPDATE: regression with certain renegotiations (LP: #1332643) patches/ CVE-2014- 0224-regression 2.patch: accept CCS after
- debian/
sending finished ssl/s3_clnt.c.
-- Marc Deslauriers <email address hidden> Fri, 20 Jun 2014 13:51:23 -0400