From owner-freebsd-security@freebsd.org Wed Nov 29 17:51:25 2017 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 74067E5F269 for ; Wed, 29 Nov 2017 17:51:25 +0000 (UTC) (envelope-from yz@yz.kiev.ua) Received: from nb.yz.kiev.ua (nb.yz.kiev.ua [92.63.99.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 2EC727E573 for ; Wed, 29 Nov 2017 17:51:23 +0000 (UTC) (envelope-from yz@yz.kiev.ua) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=yz.kiev.ua; s=dkim; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID: Subject:To:From:Date:Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=dzdktgvIXMQQCjdn8cOMSrGvdTQG8ahj86bsl0KWy9c=; b=DCTSgr4yRVXJTDKbV9mt0rj4DG IcR+p/QPFWJRP8AH7J8oGKpm/ipdeIiawWR5MZ8Pq/uiVkNZ7UQWqEcxsZl7tl/W0aY12zsaUFXB6 2SfLX/K9HXPzDsdzAR3bP4z3/Kkx8SPqaw/5z9TL6Nbko81ABngK+DtyyTwLMAOPXfvI=; Received: from yz by nb.yz.kiev.ua with local (Exim 4.89 (FreeBSD)) (envelope-from ) id 1eK6Vr-0008CN-FE for freebsd-security@freebsd.org; Wed, 29 Nov 2017 19:51:11 +0200 Date: Wed, 29 Nov 2017 19:51:11 +0200 From: "George L. Yermulnik" To: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-17:11.openssl Message-ID: <20171129175111.GE9006@yz.kiev.ua> References: <20171129061559.3E4FCC99B@freefall.freebsd.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20171129061559.3E4FCC99B@freefall.freebsd.org> Organization: Earth, Europe, Ukraine, Kiev X-Yz-Mark: yz@nb 20171129 19:48:38 User-Agent: Mutt/1.9.1 (2017-09-22) X-Mailman-Approved-At: Wed, 29 Nov 2017 17:57:18 +0000 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Nov 2017 17:51:25 -0000 Hello! On Wed, 29 Nov 2017 at 06:15:59 (+0000), FreeBSD Security Advisories wrote: [...] > 3) To update your vulnerable system via a source code patch: > The following patches have been verified to apply to the applicable > FreeBSD release branches. > a) Download the relevant patch from the location below, and verify the > detached PGP signature using your PGP utility. > [FreeBSD 10.3] > # fetch https://security.FreeBSD.org/patches/SA-17:11/openssl-10.patch > # fetch https://security.FreeBSD.org/patches/SA-17:11/openssl-10.patch.asc > # gpg --verify openssl-10.patch.asc [...] Is the patch above is indeed FreeBSD_10.3_specific as it might be considered according to the block name ("[FreeBSD 10.3]")? Would it apply cleanly on 10.4? -- George L. Yermulnik [YZ-RIPE]