A security vulnerability in the TLS protocol (including SSL v3) may allow an attacker to conduct man-in-the-middle (MITM) type of attacks where chosen plain text may be injected as a prefix in an user's TLS session. This vulnerability does not allow an attacker to decrypt the intercepted network communication.
6 SR6 and earlier
5.0 SR11 and earlier
1.4.2 SR13-FP3 and earlier
Releases containing fix
6 SR7 and later
5.0 SR11-FP1 and later
1.4.2 SR13-FP4 and later
distfiles on their way as usual
Marked ppc stable.
glsa request filed.
A quick search shows no results for a GLSA that was released per previous comments.
The issue was fixed in later releases from Sun and marked stable. No vulnerable versions are in the tree as of approximately 6 years ago.
Packages dropped 1 Nov 2010 per .