[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] solarspeed openssl package
- Subject: Re: [cobalt-security] solarspeed openssl package
- From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
- Date: Wed, 2 Oct 2002 13:28:16 +0200
- Organization: SOLARSPEED.NET
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Eugene,
> are you certain about this? Or did you figure from the openssl version
> that apache reports? The point is that they may have build mod_ssl
> against openssl-0.9.6b-24 RPM that, despite its version, allegedly has
> slapper-exploitable vulnerabilities fixed.
The RPMs inside the PKG were built on August 7th, so there is little hope for
that. You'd need RH's openssl-0.9.6b-28 to fix the problem.
--
With best regards,
Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer