Date: Sat, 4 Oct 2003 00:06:05 +0000 (UTC) From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-03:18.openssl Message-ID: <Pine.BSF.4.53.0310032346150.60080@e0-0.zab2.int.zabbadoz.net> In-Reply-To: <200310032249.h93MnXS8047857@freefall.freebsd.org> References: <200310032249.h93MnXS8047857@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 3 Oct 2003, FreeBSD Security Advisories wrote: Hi, > V. Solution > > Perform one of the following: ... > 2) To patch your present system: ... > c) Recompile the operating system as described in > <URL: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html >. > > Note that any statically linked applications that are not part of the > base system (i.e. from the Ports Collection or other 3rd-party sources) > must be recompiled. this seems to be a default disclaimer for the openssl advisories but at this point I am asking myself if there are any applications statically linked against librypto or libssl in the base system ? from what I can see no API is changed with this patch so wouldn't it be possible to recompile libssl/libcrypto and install only them instead of rebuilding the complete base system as suggested (assuming nothing in the base system is statically linked against one of the two) ? -- Greetings Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT 56 69 73 69 74 http://www.zabbadoz.net/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.53.0310032346150.60080>