#3061 closed task (fixed)
OpenSSL-0.9.8.n
| Reported by: | Randy McMurchy | Owned by: | Randy McMurchy |
|---|---|---|---|
| Priority: | high | Milestone: | |
| Component: | BOOK | Version: | SVN |
| Severity: | major | Keywords: | |
| Cc: |
Description
Version increment to 0.9.8m
Fixes CVE-2009-3555 dated 5th November 2009. Implement RFC5746 to address vulnerabilities in SSL/TLS renegotiation.
Change History (7)
comment:1 by , 14 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:2 by , 14 years ago
| Summary: | OpenSSL-0.9.8m → OpenSSL-1.0.0 |
|---|
comment:3 by , 14 years ago
This is interesting. If we go with this and change from using lib{ssl,crypto}.so.0.9.8 to so.1.0.0, other packages could become broken, but probably not many as any modern autotooled package will look for open{ssl,crypto}.so.
I'm going to upgrade my box. I have a ton of stuff linked to libcrypto. I'm going to make compatibility symlinks and see if anything breaks. It should be a good test.
comment:4 by , 14 years ago
| Summary: | OpenSSL-1.0.0 → OpenSSL-0.9.8.n |
|---|
Doesn't look good. First package I installed after creating symlinks (Apache) had problems in configure when the pg_config program (from PostGreSQL, I believe) chokes on missing symbols.
Reverting back to 0.9.8.n.
Thank goodness for package management allowing me to easily install and remove a package multiple times.
comment:5 by , 14 years ago
Backing down to 0.9.8m and there are no problems with the pg_config program during Apache configuration. Full steam ahead.
comment:6 by , 14 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Updated BLFS to OpenSSL-0.9.8n
Version increment to 1.0.0