Bug #966

Critical vulnerability in OpenSSL

Added by mikavir almost 10 years ago. Updated almost 10 years ago.

Status:Closed Start date:04/08/2014
Priority:Immediate Due date:
Assignee:brfransen % Done:

0%

Category:Packages: Core Spent time: 0.25 hour
Target version:8.2

Description

We seem to have openssl 1.0.1c, which, to my understanding is affected as per: http://www.openssl.org/news/secadv_20140407.txt

The version should be updated to 1.0.1g soon.

Mika E. Virtanen

Associated revisions

Revision e862aec0
Added by brfransen almost 10 years ago

openssl: update to 1.0.1.g refs #966

History

Updated by mikavir almost 10 years ago

Forgot to mention that this concerns the current (8.1) version of LinHES. And the precise version of openssl is 1.0.1.c-1.

Mika E. Virtanen

Updated by brfransen almost 10 years ago

  • Assignee set to brfransen
  • Category set to Packages: Core
  • Status changed from New to Feedback

I don't have an 8.1 system up right now to test but you can try it from the testing repo. pacman -U http://linhes.org/repo/x86_64/core-testing/openssl-1.0.1.g-1-x86_64.pkg.tar.xz

Updated by mikavir almost 10 years ago

Thank you brfransen! Seems to work flawlessly for my purposes.

Updated by brfransen almost 10 years ago

  • Status changed from Feedback to Closed
  • Target version set to 8.2

Also available in: Atom PDF