 www.centos.org Forum Index CentOS 6 - Security Support  openss 1.3.2
|
 Bottom  Previous Topic  Next Topic |
|
|
|
|
|---|
Topic options
Threaded
Newest First| Poster | Thread |
|---|
|
openss 1.3.2 | #1 |
|
|---|---|---|---|
|
Newbie
 
Joined: 2012/4/19
From
Posts: 2
|
Hi All,
I, am sure, you are aware of the Multiple vulnerabilities were reported in the ASN.1 parsing code in OpenSSL. I am wondering as how to update my openssl. With many thanks in advance. |
||
Posted on: 2012/4/19 21:03
  |
 |
||
rvakili
|
Re: openss 1.3.2 | #2 |
|
|---|---|---|---|
|
Moderator
Joined: 2006/12/13
From Tidewater, Virginia, North America
Posts: 18773
|
Welcome to the CentOS fora. Please see the recommended reading for new users linked in my signature.
FAQ#20. Where can I get the latest version of XyZ.rpm for CentOS? I cannot find it anywhere. Pay attention to the part about backporting. |
||
|
_________________
Phil Recommended reading: FAQ & Readme first ; Search hint: google "your topic site:centos.org"; Smart Questions |
|||
Posted on: 2012/4/19 23:43
|
|
||
|
Re: openss 1.3.2 | #3 |
|
|---|---|---|---|
|
Moderator
Joined: 2009/9/24
From Brighton, UK
Posts: 6306
|
I can't see any vulnerabilities in the ASN.1 parsing in openssl listed here newer than 2009 and they're fixed in openssl 0.9.8k so CentOS 6 is not vulnerable with its openssl-1.0.0-20.el6_2.3 package. On CentOS 5 you can check for specific CVE numbers by running, e.g.
|
||
|
_________________
Linux/VoIP Systems Administrator |
|||
Posted on: 2012/4/20 0:57
|
|
||
 Top Previous Topic Next Topic |
 |
|
You cannot start a new topic.
You can view topic.