# HG changeset patch
# User Rich Burridge <rich.burridge@oracle.com>
# Date 1420589200 28800
# Node ID bdfbf7f178a732146af2f87ade34a1318427c5df
# Parent  c7ba860a6ef7f9c4319c551491d665527c11ab5c
20230898 problem in UTILITY/ELINKS

diff -r c7ba860a6ef7 -r bdfbf7f178a7 components/elinks/patches/init-openssl.patch
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/elinks/patches/init-openssl.patch	Tue Jan 06 16:06:40 2015 -0800
@@ -0,0 +1,14 @@
+Disable SSLv2 and SSLv3 in elinks to "mitigate POODLE vulnerability".
+
+This change will be passed upstream.
+
+--- elinks-0.11.7/src/network/ssl/ssl.c.orig	2014-12-17 12:23:16.239844159 -0800
++++ elinks-0.11.7/src/network/ssl/ssl.c	2015-01-06 05:41:07.668610655 -0800
+@@ -58,6 +58,7 @@
+ 	SSLeay_add_ssl_algorithms();
+ 	context = SSL_CTX_new(SSLv23_client_method());
+ 	SSL_CTX_set_options(context, SSL_OP_ALL);
++	SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
+ 	SSL_CTX_set_default_verify_paths(context);
+ }
+