CVE-2014-0160 OpenSSL Heartbleed
I answer in place of Shinobar.
OpenSSL takes measures at 1.0.1g.
However, Ubuntu, Debian, Shackware does not adopt this and makes modifications with a patch.
This will be measures for stability to operate more application.
We begin this work with Precise. (Of the Japanese Edition release only Precise most newly)
Originally we confirmed that OpenSSL included in Precise obtained it from the Ubuntu package.
Shinobar brings the .pet package from the latest Ubuntu package to this.
The method to confirm the application of the patch refers to the past post of this topic.
OpenSSL takes measures at 1.0.1g.
However, Ubuntu, Debian, Shackware does not adopt this and makes modifications with a patch.
This will be measures for stability to operate more application.
We begin this work with Precise. (Of the Japanese Edition release only Precise most newly)
Originally we confirmed that OpenSSL included in Precise obtained it from the Ubuntu package.
Shinobar brings the .pet package from the latest Ubuntu package to this.
The method to confirm the application of the patch refers to the past post of this topic.
[b]BALLOON a.k.a. Fu-sen.[/b] from Japan | ãµã†ã›ã‚“ Fu-sen. (old: 2 8 6)
Balloon:
That certainly makes sense. Thank you.
Of course, the next question would need to come from this. If I used Shinobar's patch and after noticing no change in version I proceeded to install the 2 deb packages listed, would that still be ok? Now, my SSL Version reads 1.0.1g and everything appears to be working fine. What are your thoughts on this?
Thanks,
Slavvo67
That certainly makes sense. Thank you.
Of course, the next question would need to come from this. If I used Shinobar's patch and after noticing no change in version I proceeded to install the 2 deb packages listed, would that still be ok? Now, my SSL Version reads 1.0.1g and everything appears to be working fine. What are your thoughts on this?
Thanks,
Slavvo67
Re: Fix PET for Precise Puppy
I compared the contents of this Precise .pet with the package contents in the slacko repo and I don't understand why there is such a big difference - this pet for Precise has very few files, but the slacko one has many many files and renames and deletions (of certificates etc). I would have expected them to be quite similar. Does anyone know why the number of files is so different? For slacko could i maybe just grab the slack14 openssl.cnf and the 2 slack14 libs, just like in the Precise pet or is there a good reason why the slack14 packages have so much stuff in them??shinobar wrote:For all Precise Puppy:
http://shino.pos.to/linux/puppy/openssl ... tu5.12.pet
It contains 2 libraries under /lib from libssl1.0.0_1.0.1-4ubuntu5.12_i386.deb,
/etc/ssl/openssl.cnf from openssl_1.0.1-4ubuntu5.12_i386.deb
EDIT : A list of the files included in the slack package can be found 2/3 of the way down the page here:
http://pkgs.org/slackware-14.0/slackwar ... 0.txz.html
(keep clicking the "show more" button)
openssl-fix for Precise Puppy
openssl-fix for all Precise Puppy:
made of openssl/libssl 1.0.1-4ubuntu5.14 from Ubuntu precise repo, libssl0.9.8k-7ubuntu8.18 from lucid repo.
http://shino.pos.to/party/bridge.cgi?pu ... tu8.18.pet
Remove openssl-fix-1.0.1-4ubuntu5.12.pet before if you already installed it.
made of openssl/libssl 1.0.1-4ubuntu5.14 from Ubuntu precise repo, libssl0.9.8k-7ubuntu8.18 from lucid repo.
http://shino.pos.to/party/bridge.cgi?pu ... tu8.18.pet
Remove openssl-fix-1.0.1-4ubuntu5.12.pet before if you already installed it.
Downloads for Puppy Linux [url]http://shino.pos.to/linux/downloads.html[/url]
OpenSSL Security Advisory [05 Jun 2014]
http://www.openssl.org/news/secadv_20140605.txt
The update is already listed in Slacko 5.7 Updates Manager.
openssl-1.0.1h
http://www.openssl.org/news/secadv_20140605.txt
The update is already listed in Slacko 5.7 Updates Manager.
openssl-1.0.1h
The things they do not tell you, are usually the clue to solving the problem.
When I was a kid I wanted to be older.... This is not what I expected
YaPI(any iso installer)
When I was a kid I wanted to be older.... This is not what I expected
YaPI(any iso installer)
- OscarTalks
- Posts: 2196
- Joined: Mon 06 Feb 2012, 00:58
- Location: London, England
Hello oldyeller,oldyeller wrote:Is also affecting dpup wheezy?
I did try to compile openssl-1.0.1h for Dpup Wheezy.
It is here:-
http://smokey01.com/OscarTalks
Hope I got it right. I haven't seen an official Debian version anywhere, but maybe there is one and I just haven't spotted it. Folks may wish to try my one but not in other Puppies and take the usual precautions beforehand. One thing I have noticed is that some programs will warn in terminal that "No version information available" if they were compiled against the earlier version but they still seem to run perfectly well.
Oscar in England
OpenSSL Security Advisory [6 Aug 2014]
http://www.openssl.org/news/secadv_20140806.txt
The update is already listed in Slacko 5.7 Updates Manager.
openssl 1.0.1i
http://www.openssl.org/news/secadv_20140806.txt
The update is already listed in Slacko 5.7 Updates Manager.
openssl 1.0.1i
The things they do not tell you, are usually the clue to solving the problem.
When I was a kid I wanted to be older.... This is not what I expected
YaPI(any iso installer)
When I was a kid I wanted to be older.... This is not what I expected
YaPI(any iso installer)
- ASRI éducation
- Posts: 3197
- Joined: Sat 09 May 2009, 12:10
- Location: France
- Contact:
Hello 01micko.
Can you specify the URL of the repository used by "Updates Manager"?
I do not use Slacko, but I think the package is compatible with Precise 5.7.1.
Thank you in advance.
Regars
Can you specify the URL of the repository used by "Updates Manager"?
I do not use Slacko, but I think the package is compatible with Precise 5.7.1.
Thank you in advance.
Regars
Projet ASRI éducation => [url=http://asri-education.org/]Association[/url] | [url=http://forum.asri-education.org/]Forum[/url] | [url=http://dl01.asri-education.org/]Dépôt[/url] | [url=http://kids.asri-education.org/]Espace kids[/url]
In precise you should install:
http://packages.ubuntu.com/precise-updates/openssl
and:
http://packages.ubuntu.com/precise-updates/libssl1.0.0
Run:
to verify after install.
http://packages.ubuntu.com/precise-updates/openssl
and:
http://packages.ubuntu.com/precise-updates/libssl1.0.0
Run:
Code: Select all
#openssl version -b
- ASRI éducation
- Posts: 3197
- Joined: Sat 09 May 2009, 12:10
- Location: France
- Contact:
Thank you watchdog.watchdog wrote:In precise you should install:
http://packages.ubuntu.com/precise-updates/openssl
and:
http://packages.ubuntu.com/precise-updates/libssl1.0.0
Run:
to verify after install.Code: Select all
#openssl version -b
I'll test.
Regards
Projet ASRI éducation => [url=http://asri-education.org/]Association[/url] | [url=http://forum.asri-education.org/]Forum[/url] | [url=http://dl01.asri-education.org/]Dépôt[/url] | [url=http://kids.asri-education.org/]Espace kids[/url]
The verification code that works for me is:
Code: Select all
openssl version
The things they do not tell you, are usually the clue to solving the problem.
When I was a kid I wanted to be older.... This is not what I expected
YaPI(any iso installer)
When I was a kid I wanted to be older.... This is not what I expected
YaPI(any iso installer)
- ASRI éducation
- Posts: 3197
- Joined: Sat 09 May 2009, 12:10
- Location: France
- Contact:
@ bigpup and watchdog
I installed:
libssl1.0.0_1.0.1-4ubuntu5.20_i386.deb
openssl_1.0.1-4ubuntu5.20_i386.deb
Regards
I installed:
libssl1.0.0_1.0.1-4ubuntu5.20_i386.deb
openssl_1.0.1-4ubuntu5.20_i386.deb
Regards
- Attachments
-
- openssl_updated_preciseCE571.png
- (8.75 KiB) Downloaded 529 times
Projet ASRI éducation => [url=http://asri-education.org/]Association[/url] | [url=http://forum.asri-education.org/]Forum[/url] | [url=http://dl01.asri-education.org/]Dépôt[/url] | [url=http://kids.asri-education.org/]Espace kids[/url]