Bug 847895

Summary: VUL-1: CVE-2012-4929: apache2: CRIME attack
Product: [openSUSE] openSUSE 12.3 Reporter: Markus Gaugusch <markus>
Component: SecurityAssignee: Security Team bot <security-team>
Status: RESOLVED DUPLICATE QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: meissner
Version: Final   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Markus Gaugusch 2013-10-28 14:21:57 UTC
User-Agent:       Mozilla/5.0 (Windows NT 6.2; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0

I'm using openSUSE 12.3 and would like to configure apache to mitigate the CRIME attack. Unfortunately, this hasn't been fixed yet in openSUSE (there is only a fix for SLES, #793420).

Reproducible: Always
Comment 1 Marcus Meissner 2013-10-28 16:39:40 UTC
i am preparing an update now.

*** This bug has been marked as a duplicate of bug 793420 ***