openssl: tracking issue for upcoming security release

[rvagg]

A tracking issue for the upcoming OpenSSL security patch release coming on the 9th. Announced at https://mta.openssl.org/pipermail/openssl-announce/2015-July/000037.html

Note the severity is "high" (their highest, see security policy). As this impacts version 1.0.1 and both Node.js 0.10 and 0.12 bundle this version expect patch releases of both soon after.

io.js is tracking this at nodejs/node#2115

[misterdjules]

@shigeki or and other @joyent/node-collaborators Do you have some time to do this upgrade tomorrow?

[shigeki]

@misterdjules I will work it for v0.10.x after nodejs/node#2115 .

[misterdjules]

@shigeki That's great, thank you so much once again 👍 If for whatever reason you don't have time to do it, let us know and we'll find someone else to do that.

[misterdjules]

Fixed by #25654, landing soon.

[misterdjules]

Fixed by 0cf9f27, 8277822, 984e7f9, 7ad5938 and c5d7b31.

[jasnell]

+1.. thanks all