[colug-432] Heartbleed Heartburn

R P Herrold herrold at owlriver.com
Thu Apr 10 16:14:49 EDT 2014


On Thu, 10 Apr 2014, Rob Stampfli wrote:

> number indicates "OpenSSL 1.0.1e-fips 11 Feb 2013", so I suspect it is not
> patched for Heartbleed.

1. read about backports by CentOS upstream.  Google certainly 
knows this query.  version numbers remain stable. release 
numbers increment.  Banners (which you quote here) do not 
change

2. read:  
	rpm -q --changelog openssl | head
or:
	rpm -q --changelog openssl | grep -i cve

-- Russ herrold


More information about the colug-432 mailing list