From owner-freebsd-questions@FreeBSD.ORG Wed Aug 26 17:44:06 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D2EB81065692 for ; Wed, 26 Aug 2009 17:44:06 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (gizmo.acns.msu.edu [35.8.1.43]) by mx1.freebsd.org (Postfix) with ESMTP id 9A5008FC25 for ; Wed, 26 Aug 2009 17:44:06 +0000 (UTC) Received: from gizmo.acns.msu.edu (localhost [127.0.0.1]) by gizmo.acns.msu.edu (8.13.6/8.13.6) with ESMTP id n7QHeTD1023960; Wed, 26 Aug 2009 13:40:29 -0400 (EDT) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: (from jerrymc@localhost) by gizmo.acns.msu.edu (8.13.6/8.13.6/Submit) id n7QHeT7Q023959; Wed, 26 Aug 2009 13:40:29 -0400 (EDT) (envelope-from jerrymc) Date: Wed, 26 Aug 2009 13:40:29 -0400 From: Jerry McAllister To: Jason Message-ID: <20090826174029.GC23872@gizmo.acns.msu.edu> References: <20090826160816.GA35964@eggman.experts-exchange.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20090826160816.GA35964@eggman.experts-exchange.com> User-Agent: Mutt/1.4.2.2i Cc: freebsd-questions@freebsd.org Subject: Re: question about security updates X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Aug 2009 17:44:06 -0000 On Wed, Aug 26, 2009 at 09:08:17AM -0700, Jason wrote: > I was wondering in the case of openssl: > > http://security.freebsd.org/advisories/FreeBSD-SA-09:08.openssl.asc > > Corrected: 2009-04-22 14:07:14 UTC (RELENG_7, 7.2-PRERELEASE) > 2009-04-22 14:07:14 UTC (RELENG_7_2, 7.2-RC2) > 2009-04-22 14:07:14 UTC (RELENG_7_1, 7.1-RELEASE-p5) > 2009-04-22 14:07:14 UTC (RELENG_7_0, 7.0-RELEASE-p12) > 2009-04-22 14:07:14 UTC (RELENG_6, 6.4-STABLE) > 2009-04-22 14:07:14 UTC (RELENG_6_4, 6.4-RELEASE-p4) > 2009-04-22 14:07:14 UTC (RELENG_6_3, 6.3-RELEASE-p10) > CVE Name: CVE-2009-0590 > > > I see that in release 7_2, that this was corrected. Does this mean that > if I were to download the 7.2 iso, that this patch would already be applied > to this release? It would not be in the ISO. That does not get changed after it is released. But if you do an update (CSUP) to RELENG_7_2 eg put the line *default tag=RELENG_7_2 in your supfile, then that will download the security updates. You then need to do the builds as it tells in the handbook. Make sure you read and understand the procedures in the handbook. It will all work just fine. I have done it many times. But, don't try to shortcut or make guesses about the procedures in the handbook. Then you will be off in space and it will leave something screwed up. That is why the handbook was written and one of the things that makes FreeBSD superior. ////jerry > > To me, it seems that anything that isn't *-RELEASE-p? would be applied to > the distributed iso, but I could be wrong. > > Thanks, > Jason > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"