RE: [FreeBSD-Announce] FreeBSD Security AdvisoryFreeBSD-SA-06:23.openssl [REVISED]

HI,

-----Original Message-----
From: owner-freebsd-announce@xxxxxxxxxxx
[mailto:owner-freebsd-announce@xxxxxxxxxxx] On Behalf Of
FreeBSD Security Advisories
Sent: Friday, September 29, 2006 4:00 PM
To: FreeBSD Security Advisories
Subject: [FreeBSD-Announce] FreeBSD Security
AdvisoryFreeBSD-SA-06:23.openssl [REVISED]


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

==============================================================
===============
FreeBSD-SA-06:23.openssl
Security Advisory
The
FreeBSD Project

Topic: Multiple problems in crypto(3)
<..snip..>
1) Upgrade your vulnerable system to 4-STABLE, 5-STABLE, or
6-STABLE, or to the RELENG_6_1, RELENG_6_0, RELENG_5_5,
RELENG_5_4, RELENG_5_3, or RELENG_4_11 security branch dated
after the correction date.

2) To patch your present system:

The following patch has been verified to apply to FreeBSD
4.11, 5.3, 5.4, 5.5, 6.0, and 6.1 systems.

a) Download the patch from the location below, and verify the
detached PGP signature using your PGP utility.

# fetch http://security.FreeBSD.org/patches/SA-06:23/openssl.patch
# fetch http://security.FreeBSD.org/patches/SA-06:23/openssl.patch.asc
b) Execute the following commands as root:

# cd /usr/src
# patch < /path/to/patch

c) Recompile the operating system as described in
<URL: http://www.freebsd.org/handbook/makeworld.html> and
reboot the system.


I have done these 3 steps already:
# make buildworld
# make buildkernel
# make installkernel

Do i need to do these steps too?
# mergemaster -p
# make installworld
# mergemaster

I have FreeBSD 6.1 Release

Thanks for your help
Pascal Bleyler

_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: [OT] Q: what would you choose for a VCS today
    ... FreeBSD as base that would allow better teams cooperation and easy code ... control fly out the window from, say, the 42nd floor. ... If you think you need a vendor branch, take a look at mercurial patch ... Patch queues are quite powerful, and even though you end up versioning ...
    (freebsd-hackers)
  • RE: For the love of God, is it even possible to make the Atheros ath.patch & updated HALactually
    ... > # mv ath_hal_20051212 ath ... in hopes that maybe the patch was FINALLY ... This FreeBSD installation is sitting here doing ... To June/July 2005 madwifi was very unstable, after merging cvs BSD tree of ...
    (freebsd-current)
  • Re: FreeBSD Security Advisory FreeBSD-SA-02:28.resolv
    ... > There's no patch for these, and in the case of the embedded ... >>FreeBSD only: NO ... In a few instances in the resolver code, ... >>can spoof DNS messages) may produce a specially crafted DNS message ...
    (FreeBSD-Security)
  • Re: FreeBSD 6.0 compat with DL320 G4
    ... The patch I created makes the broadcom chip work without panicing ... FreeBSD 6.0 compat with DL320 G4 ... this server also has bge interfaces and had no ...
    (freebsd-questions)
  • Re: Jail Resource Limits for 6.x ...
    ... Why there are SoC projects, which never come in to src tree or wider publicity? ... Per the recent announcement on the freebsd-announce mailing list and on the web site, you can learn more about the SoC projects by visiting the FreeBSD web page, and also the FreeBSD wiki which contains more detailed information on each project: ... However, many students have started, and already put information about their projects online. ... Somebody did patch with new / experimental features and almost nobody knows about it. ...
    (freebsd-stable)