From owner-freebsd-security@FreeBSD.ORG Thu Dec 3 17:10:09 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0272F1065672 for ; Thu, 3 Dec 2009 17:10:09 +0000 (UTC) (envelope-from rea-fbsd@codelabs.ru) Received: from 0.mx.codelabs.ru (0.mx.codelabs.ru [144.206.177.45]) by mx1.freebsd.org (Postfix) with ESMTP id A255F8FC08 for ; Thu, 3 Dec 2009 17:10:08 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=codelabs.ru; s=two; h=Sender:In-Reply-To:Content-Type:MIME-Version:References:Reply-To:Message-ID:Subject:Cc:To:From:Date; bh=QxTyj0ox+ZQfyo46PAxI2pan0gu224CzNMem6Oz7hlI=; b=thKa+CwimN4dYR6EIOMcitzLtaCraupwRFHoA2wxSQkOll430apeYxwFsgdNC5jwLPDOAgeB61esszNSoOtpV/pjw7dyh4ZQF3RSh2/qEeYtfSE8tUHojNqJPDxbw/R++E62NVk2SLcmVclGgoF026WKyFMc0AG+hHuxe3EVFVmq/4VWas06xp4ETGGdgEhTRkI03UznhRal6UBqB+gMlaFZHyIppVBfcmMrk6SzI8gm+QP/n7QAHYVI5ufOp8GBaoTAEmGKCqy63OeRHd+0zZDN9dFGh3s5k3mgzWnzjYeAQ+NOdmalsfFMTVT4h4e38e1N1vtNjvK+pWmNucEenw==; Received: from void.codelabs.ru (void.codelabs.ru [144.206.177.25]) by 0.mx.codelabs.ru with esmtpsa (TLSv1:AES256-SHA:256) id 1NGFBv-00071N-KH; Thu, 03 Dec 2009 20:10:07 +0300 Date: Thu, 3 Dec 2009 20:10:05 +0300 From: Eygene Ryabinkin To: Niels Bakker Message-ID: References: <200912030930.nB39Ude2037517@freefall.freebsd.org> <20091203130936.GU20638@burnout.tpb.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20091203130936.GU20638@burnout.tpb.net> Sender: rea-fbsd@codelabs.ru Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-09:15.ssl X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: rea-fbsd@codelabs.ru List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Dec 2009 17:10:09 -0000 Thu, Dec 03, 2009 at 02:09:36PM +0100, Niels Bakker wrote: > >============================================================================= > >FreeBSD-SA-09:15.ssl Security Advisory > > The FreeBSD Project > [..] > >b) Execute the following commands as root: > > > ># cd /usr/src > ># patch < /path/to/patch > ># cd /usr/src/secure/lib/libcrypto > ># make obj && make depend && make includes && make && make install > > Did you mean secure/lib/libssl rather than libcrypto? Most probably, yes: both commits to 0.9.8k reference files in libssl, http://cvs.openssl.org/chngview?cn=18794 http://cvs.openssl.org/chngview?cn=18791 ----- [/usr/src/secure/lib]$ grep -Er '(s3_srvr|s3_lib)' * libssl/Makefile: s3_both.c s3_clnt.c s3_enc.c s3_lib.c s3_meth.c s3_pkt.c \ libssl/Makefile: s3_srvr.c ssl_algs.c ssl_asn1.c ssl_cert.c ssl_ciph.c \ :: rea@void : 20:06:59 : /usr/src/secure/lib $ grep -Er '(s3_srvr|s3_lib|ssl_err|s3_pkt|ssl3\.h)' * libssl/Makefile: s3_both.c s3_clnt.c s3_enc.c s3_lib.c s3_meth.c s3_pkt.c \ libssl/Makefile: s3_srvr.c ssl_algs.c ssl_asn1.c ssl_cert.c ssl_ciph.c \ libssl/Makefile: ssl_err.c ssl_err2.c ssl_lib.c ssl_rsa.c ssl_sess.c ssl_stat.c \ libssl/Makefile:INCS= dtls1.h kssl.h ssl.h ssl2.h ssl23.h ssl3.h tls1.h libssl/man/ssl.3:.IP "\fBssl3.h\fR" 4 libssl/man/ssl.3:.IX Item "ssl3.h" ----- -- Eygene _ ___ _.--. # \`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard / ' ` , __.--' # to read the on-line manual )/' _/ \ `-_, / # while single-stepping the kernel. `-'" `"\_ ,_.-;_.-\_ ', fsc/as # _.-'_./ {_.' ; / # -- FreeBSD Developers handbook {_.-``-' {_/ #