At 12:31 PM 9/19/2002 +0700, Agung Ud said: >At 11:29 AM 9/19/02 +0000, you wrote: >>http://rhn.redhat.com/errata/RHSA-2002-155.html >> >>ftp://updates.redhat.com/7.3/en/os/i386/openssl-0.9.6b-24.i386.rpm > >itu khan yg persi openssl-0.9.6b tho mas .... >Padahal yg vurnarable adalah 0.9.6d ke bawah. >So.....
Ini patches, bukan upgrade. ---<cut>--- Updated openssl packages fix remote vulnerabilities Advisory: RHSA-2002:155-11 Last updated on: 2002-07-29 CVEs (cve.mitre.org): CAN-2002-0655 CAN-2002-0656 .... A further issue was found in OpenSSL 0.9.7 that does not affect versions of OpenSSL shipped with Red Hat Linux (CAN-2002-0657). A large number of applications within Red Hat Linux make use the OpenSSL library to provide SSL support. All users are therefore advised to upgrade to the errata OpenSSL packages, which contain patches to correct these vulnerabilities. ... Thanks go to the OpenSSL team and Ben Laurie for providing patches for these issues. -- Utk berhenti langganan, kirim email ke [EMAIL PROTECTED] Informasi arsip di http://www.linux.or.id/milis.php3