Bug 1156422
Summary: | curl does not allow explicit control of DHE ciphers | ||||||
---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Martin Poole <mpoole> | ||||
Component: | curl | Assignee: | Kamil Dudka <kdudka> | ||||
Status: | CLOSED ERRATA | QA Contact: | Stefan Kremen <skremen> | ||||
Severity: | high | Docs Contact: | |||||
Priority: | unspecified | ||||||
Version: | 6.6 | CC: | kdudka, ovasik, qe-baseos-security | ||||
Target Milestone: | rc | ||||||
Target Release: | --- | ||||||
Hardware: | Unspecified | ||||||
OS: | Unspecified | ||||||
Whiteboard: | |||||||
Fixed In Version: | curl-7.19.7-43.el6 | Doc Type: | Enhancement | ||||
Doc Text: |
With the updated packages, it is possible to explicitly enable/disable new AES (Advanced Encryption Standard) cipher-suites to be used for TLS.
|
Story Points: | --- | ||||
Clone Of: | 1156410 | Environment: | |||||
Last Closed: | 2015-07-22 05:44:03 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | 1066065 | ||||||
Bug Blocks: | |||||||
Attachments: |
|
Description
Martin Poole
2014-10-24 12:32:51 UTC
Comment on attachment 950380 [details] Patch to add missing cipher names. Thanks for the patch. However, we need to use the upstream solution in order to stay compatible with newer releases: https://github.com/bagder/curl/compare/4c599b9d2d...67061e3f4e Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHSA-2015-1254.html |