******************************
OSG 1.2.27 Update Notification
******************************
Date: February 14, 2012
Affected Components
The following components are affected:
* Curl
* Apache
Summary
This release contains the following updates to address security
vulnerabilities:
* curl (advisory ( http://curl.haxx.se/docs/adv_20120124B.html ))
* Apache httpd 2.2.22 (vulnerabilities/changelog ( http://www.apache.org/dist/httpd/CHANGES_2.2.22 ))
This update includes a security fix for curl to correct a
security vulnerability when using curl is using openssl. In
addition, Apache httpd has been updated to address multiple
security vulnerabilities.
Update instructions can be found on the OSG Twiki under the OSG
1.2 update instructions ( https://twiki.grid.iu.edu/bin/view/ReleaseDocumentation/OSG12UpdateInstructions ).
Additional Information
The release notes for the VDT 2.0.0p34 release underlying this
release can be found here ( http://vdt.cs.wisc.edu/releases/2.0.0/release-p34.html ).