Date: Tue, 8 Apr 2014 09:29:13 -0300 From: =?ISO-8859-1?Q?Matheus_Weber_da_Concei=E7=E3o?= <matheuswcon@gmail.com> To: staticsafe <me@staticsafe.ca> Cc: freebsd-questions@freebsd.org, Matthias Petermann <matthias@petermann-it.de> Subject: Re: OpenSSL TLS Heartbeat Security Issue Message-ID: <CACxFWOfq=9Zedgp-jQFPLSQE0fdnkLZQ=6F4GNi37PB38yTYqg@mail.gmail.com> In-Reply-To: <5343E28E.3070905@staticsafe.ca> References: <20140408134425.Horde.azH0NUU2X8TUmV9kVtS2MA2@d2ux.org> <5343E28E.3070905@staticsafe.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
# uname -a && openssl version FreeBSD labxyz 10.0-RELEASE FreeBSD 10.0-RELEASE #0 r264140: Mon Apr 7 11:21:50 BRT 2014 root@labxyz:/usr/obj/usr/src/sys/LABXYZ amd64 OpenSSL 1.0.1e-freebsd 11 Feb 2013 Looks like a vulnerable OpenSSL, or the freebsd version was compiled without heartbleed support? On Tue, Apr 8, 2014 at 8:50 AM, staticsafe <me@staticsafe.ca> wrote: > On 4/8/2014 07:44, Matthias Petermann wrote: > > Hello, > > > > anyone able to comment on the impact of: > > > > http://heartbleed.com/ > > > > to recent versions of FreeBSD? > > > > Thanks & kind regards, > > Matthias > > > > [root@ferrovax ~]# uname -a && openssl version > FreeBSD ferrovax.asininetech.com 9.2-RELEASE-p3 FreeBSD 9.2-RELEASE-p3 > #0: Sat Jan 11 03:25:02 UTC 2014 > root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC amd64 > OpenSSL 0.9.8y 5 Feb 2013 > > openssl from base, not affected. > -- > staticsafe > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > --=20 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D Matheus Weber da Concei=E7=E3o
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CACxFWOfq=9Zedgp-jQFPLSQE0fdnkLZQ=6F4GNi37PB38yTYqg>