new openssl security advisory is dfly affected
robin.hahling at gw-computing.net
Sun Jun 8 00:57:25 PDT 2014
OpenSSL is a dependency of x11-servers/xorg-server. As you noticed, two
versions of OpenSSL are provided, the one in base and the one in dports.
They are not necessarily at the same version or updated at the same time.
You can specify which one to use by default for other dports, in
/etc/make.conf, by specifying either:
If you choose the latter, the dports that depend on OpenSSL will link
against the version in base rather than dports, thus you won't need
security/openssl from dports.
On Sunday 08 June 2014 12.51:23 Vitaly Shevtsov wrote:
> Btw, why is OpenSSL built from dports when I install
> x11-servers/xorg-server? It's present in base system with the same
> 2014-06-06 13:14 GMT+06:00 Robin Hahling <robin.hahling at gw-
> > On Friday 06 June 2014 00.06:04 Edward M wrote:
> > > Hello,
> > >
> > >
> > > Wondering if new openssl SSl/TLS MITM vulnerability (CVE-20140224)
> > > affects DragonFLY?
> > >
> > > OpenSSL Security Advisory
> > > https://www.openssl.org/news/secadv_20140605.txt
> > Hi,
> > DragonFly BSD 3.8 ships with OpenSSL 1.0.1g. OpenSSL needs an
> > version 1.0.1h so I bet a new release will come soon.
> > Cheers,
> > Robin
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users