[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] solarspeed openssl package

Subject: Re: [cobalt-security] solarspeed openssl package
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Wed, 2 Oct 2002 13:28:16 +0200
Organization: SOLARSPEED.NET
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Eugene,

> are you certain about this?  Or did you figure from the openssl version
> that apache reports?  The point is that they may have build mod_ssl
> against openssl-0.9.6b-24 RPM that, despite its version, allegedly has
> slapper-exploitable vulnerabilities fixed.

The RPMs inside the PKG were built on August 7th, so there is little hope for 
that. You'd need RH's openssl-0.9.6b-28 to fix the problem.

-- 

With best regards,

Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer

References:
- [cobalt-security] solarspeed openssl package
  - From: marcus miller
- Re: [cobalt-security] solarspeed openssl package
  - From: Michael Stauber
- Re: [cobalt-security] solarspeed openssl package
  - From: Eugene Crosser

Prev by Date: [cobalt-security] Apache & SSL Update 2.0.1
Next by Date: Re: [cobalt-security] Apache & SSL Update 2.0.1
Previous by thread: Re: [cobalt-security] solarspeed openssl package
Next by thread: Re: [cobalt-security] solarspeed openssl package

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index