> On Thursday, April 10, 2014 9:30 AM, David Glover <[email protected]>
> wrote:
> > Debian patched the wheezy version of OpenSSL without changing the version
> number.
>
> Run:
> dpkg-query -l openssl
>
> You should see version 1.0.1e-2+deb7u5.
>
> The "+deb7u5" indicates the heartbleed patch is installed.
No, i didnt have that originally, only after i added security to my
sources.list. The original update didnt update this, so it wasnt just the
version-number.
I also checked the site using theĀ http://filippo.io/Heartbleed test, and it
came up vulnerable. But things are fixed now.
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
Archive:
https://lists.debian.org/[email protected]
