Golfreeze.packetlove.com: Life style of Golfreeze Canon400D Family kammtan.com Jazz Freebsd Unix Linux System Admin guitar Music

All about unix linux freebsd and FAQ for Packetlove.com Web hosting , Mail hosting , VoIP + IP PBX server => All Security via cyber space relate golfreeze task. => Topic started by: golfreeze on เมษายน 16, 2014, 10:53:24 AM

Title: openssl heartbleed bug CVE-2014-0160
Post by: golfreeze on เมษายน 16, 2014, 10:53:24 AM
##Tool check bug
https://filippo.io/Heartbleed/ (https://filippo.io/Heartbleed/)
http://www.digicert.com/help/ (http://www.digicert.com/help/)

if you use openssl version 1.0.0 - 1.0.1e need upgrade openssl to openssl-1.0.1e-16.el6_5.7.x86_64

openssl-1.0.1e-16.el6_5.7.x86_64 is already make patch to fix this bug.

#comfirm
rpm -q --changelog openssl | grep CVE-2014-0160


[root@ss]# rpm -q --changelog openssl | grep CVE-2014-0160
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension