DragonFly BSD
DragonFly users List (threaded) for 2009-11
[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]

HEADS UP: new openssl

From: Aggelos Economopoulos <aoiko@xxxxxxxxxxxxxx>
Date: Sun, 08 Nov 2009 23:56:48 +0200

Our openssl has been updated to version 0.9.8l which works around
CVE-2009-3555 (see for instance http://extendedsubset.com/ or
http://www.securityfocus.com/bid/36935). The vulnerability allows data
injection by man-in-the-middle attackers, so you are advised to upgrade
to the latest version by installing a current world and rebuilding any
binaries that are linked statically against openssl. SSH is not affected.

The new openssl has also been merged into the 2.4 release branch. If you
are running 2.4 or 2.4.1, you can

git clone $mirror
git checkout origin/DragonFly_RELEASE_2_4
make buildworld
make buildkernel
make installkernel
make installworld
make upgrade

and restart all daemons that rely on openssl (you can do that by
rebooting the machine if you are not sure which those are).


[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]