CVE-2014-0224 and CentOS 5.11 with openSSL

Issues related to software problems.
Locked
spinmaster
Posts: 10
Joined: 2014/11/19 19:30:22

CVE-2014-0224 and CentOS 5.11 with openSSL

Post by spinmaster » 2014/11/19 20:18:16

Hi

I am getting positive hits by tripwire scripts for CVE 2014-0224 even after patching my CentOS 5.11 with openSSL release 0.9.8e-31.el5_11.
I've followed the guides found in this forum to update, but scan keeps getting hits.

Greatly appreciate any advice for checking other things I may have missed.

Thank you very much.

S.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: CVE-2014-0224 and CentOS 5.11 with openSSL

Post by TrevorH » 2014/11/19 21:48:18

Please don't make duplicate posts. This thread is locked and replies should go to the openssl thread viewtopic.php?f=11&t=46561&p=210903#p210903
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

Locked