Mike DePaulo | 8 Jun 03:53 2014
Picon

X2Go Client for Windows (4.0.2.0+build4) released


Dear all,

this is to announce a new Windows-specific security update release of
the X2Go component ,,x2goclient''.
The change in this release of ,,x2goclient'' is:

  o Cygwin OpenSSL was updated from 1.0.1g-1 to 1.0.1h-1. This fixes
the 6 security vulnerabilities in the OpenSSL Security Advisory [05
Jun 2014]: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198,
CVE-2010-5298 & CVE-2014-3470

Note that the previous announcement on 4.0.2.0+build3 was about Win32
OpenSSL being updated. Now, Cygwin OpenSSL has also been updated. With
4.0.2.0+build4, all versions of OpenSSL bundled with X2Go Client for
Windows have been updated.

All Windows users of 4.0.2.0+build3 and earlier are strongly
encouraged to update to 4.0.2.0+build4.
This includes users of the "misc" fonts and "full" fonts builds.

For more info on this release, see this page:
http://wiki.x2go.org/doku.php/doc:release-notes-mswin:x2goclient-4.0.2.0

Regards,
Mike DePaulo

Gmane