On Tue, Mar 30, 2021 at 09:14:56AM -0500, Doug McIntyre wrote:
Like the patch referenced in the SA. https://security.FreeBSD.org/patches/SA-21:07/openssl-12.patchAgain, it seems like confusion over what happens in RELEASE, STABLE and CURRENT..
Hi, I'm not sure what you mean by this. In https://lists.freebsd.org/pipermail/freebsd-security/2021-March/010380.html it says
1) To update your vulnerable system via a binary patch:
Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility:
# freebsd-update fetch # freebsd-update install # <restart any daemons that use the library>
which I did. If openssl updated, would it not be logical to expect openssl version information to indicate it had in fact been updated? If not, then how am I able to tell that it has updated? On an un-upgraded 12.2-p4 system *and* on an upgraded one, openssl version reports 1.1.1h-freebsd -- J.
signature.asc
Description: PGP signature