OpenSSL heartbleed
Forum
  1. Forums
  2. General
  3. General Discussion
  1. Richard Hordern
  2. Tuesday, 08 April 2014
  3.  Subscribe via email
Hello,

Any chance of releasing quickly the latest openssl redhat has published ?

https://bugzilla.redhat.com/show_bug.cgi?id=1084875

Thanks !
Rate this post:
  1. 08.04.2014 12:04:25
  2. # 1
Richard Hordern Accepted Answer
Posts: 219
Joined: 19.03.2011
0
Votes
Undo
I belive this is already fixed :
rpm -q --changelog openssl|head
* lun. avril 07 2014 Tomáš Mráz 1.0.1e-16.7
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension

* mar. janv. 07 2014 Tomáš Mráz 1.0.1e-16.4
- fix CVE-2013-4353 - Invalid TLS handshake crash

* lun. janv. 06 2014 Tomáš Mráz 1.0.1e-16.3
- fix CVE-2013-6450 - possible MiTM attack on DTLS1

* ven. déc. 20 2013 Tomáš Mráz 1.0.1e-16.2

Thanks
  1. 08.04.2014 19:04:18
  2. # 2
Tony Corbett Accepted Answer
Posts: 2
Joined: 08.04.2014
0
Votes
Undo
I see the same if the changelog however the system is still showing as vulnerable
  1. 08.04.2014 19:04:49
  2. # 3
Tony Corbett Accepted Answer
Posts: 2
Joined: 08.04.2014
0
Votes
Undo
Every server we have thats using cloudlinux is displaying as vulnerable
all other servers are not
  1. 08.04.2014 21:04:57
  2. # 4
Manos Paschalakis Accepted Answer
Posts: 3
Joined: 01.02.2014
0
Votes
Undo
Any updates yet ?
  1. 08.04.2014 21:04:38
  2. # 5
Donald Holl Accepted Answer
Posts: 4
Joined: 01.06.2011
0
Votes
Undo
After updating OpenSSL, you must either restart applicable services or reboot the server before the change will take effect.
  • Page :
  • 1


There are no replies made for this post yet.
Be one of the first to reply to this post!
Guest
Submit Your Response
Upload files or images for this discussion by clicking on the upload button below. Supports gif,jpg,png,zip,rar,pdf
• Insert • Remove Upload Files (Maximum File Size: 2 MB)
Captcha
To protect the site from bots and unauthorized scripts, we require that you enter the captcha codes below before posting your question.