[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Relays vulnerable to OpenSSL bug: Please upgrade



tor@xxxxxxx:
> Redhat's emailed warning to update OpenSSL went out yesterday as
> "Security Advisory - RHSA-2014:0376-1". CentOS' updated OpenSSL
> was available right away as well, and the CentOS 6.5 boxes pulled it
> right down
> in an update.

just FYI:
https://listserv.fnal.gov/scripts/wa.exe?A2=ind1404&L=scientific-linux-users&D=0&T=0&P=6901
"CentOS hacked up a fix that disabled the feature prior to Red Hat
pushing the official errata. CentOS replaced the hack ~90 minutes later."

if interested, you may also look through the Scientific
Linux-{devel,errata,users} list for more information on heartbleed for
RHEL/SL/CentOS
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays