0.975 High
EPSS
Percentile
100.0%
This update allows to disable SSLv3 in lighttpd in order to protect against the POODLE attack. SSLv3 is now disabled by default and can be reenabled (if needed) using the ssl.use-sslv3 option.
www.debian.org/lts/security/2015/dla-282