openssl - 64bit block ciphers (CVE-2016-2183)

Support for security such as Firewalls and securing linux
Post Reply
DVS[1]
Posts: 1
Joined: 2017/08/10 07:44:35

openssl - 64bit block ciphers (CVE-2016-2183)

Post by DVS[1] » 2017/08/10 08:01:07

Hi,
In CentOS 7 this is patched in openssl 1.0.1e-60, But latest openssl package I see for CentOS 6 is 1.0.1e-57.
When will this be patch be available for CentOS 6?

Thanks

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: openssl - 64bit block ciphers (CVE-2016-2183)

Post by TrevorH » 2017/08/10 08:48:54

When (if!) it gets released by Redhat for RHEL6.

Looking at the upstream errata page for el6 on https://access.redhat.com/errata/#/?q=& ... ation_date and filtering by openssl shows that the last update available is the one you already have. When they release a newer version for RHEL6 then CentOS will rebuild it.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

Post Reply