Environment
Novell Messenger 2.2
Situation
On October 14, 2014, Google announced the "POODLE" vulnerability in the SSLv3 protocol (see http://googleonlinesecurity.blogspot.com/2014/10/this-poodle-bites-exploiting-ssl-30.html for more information).
Resolution
Novell has released Messenger 2.2 Support Pack 2 Hot Patch 2 to address the POODLE vulnerability. That update is available on our Patch Finder website at this link: https://download.novell.com
Full Windows and NLM version: https://download.novell.com/Download?buildid=66t5njTLVmk~
Full Linux Version: https://download.novell.com/Download?buildid=I2DgXp6pwVY~
Individual Client installs: https://download.novell.com/Download?buildid=sJ4Wcd1G7Bo~
Status
Security AlertAdditional Information
Bug Component - Issue
==================================================================
901599 Misc - Update OpenSSL to 0.9.8zc
901602 Client Cross Platform - Update Java to 1.7u71 for linux client
902438 Archive Agent - NMAA cores and then won't start (coredump at every start).
==================================================================
901599 Misc - Update OpenSSL to 0.9.8zc
901602 Client Cross Platform - Update Java to 1.7u71 for linux client
902438 Archive Agent - NMAA cores and then won't start (coredump at every start).