On Wed, Dec 18, 2002 at 10:12:29AM -0000, Steve Loughran wrote:
Hi,
> Can someone please enlighten me about how Redhat deal with OpenSSL RPM
> versions? One of my boxes says openssl 0.9.6b but I have updated several
> times since then with red-carpet and the version number never seems to
> change.
They patched OpenSSL 0.9.6b manually, so that they could avoid an
extensive QA testing to get the patch out in no time.
I think the plugin which gives you an alert is 'openssl_overflow.nasl'
(id #11055) which was removed and replaced by
openssl_generic_overflow.nasl which is more generic and should not cause
any false positive.
-- Renaud
-
[EMAIL PROTECTED]: general discussions about Nessus.
* To unsubscribe, send a mail to [EMAIL PROTECTED] with
"unsubscribe nessus" in the body.
