current-users: Re: OpenSSL upgrade time?

Subject: Re: OpenSSL upgrade time?
To: Michael Graff <explorer@flame.org>
From: Lubomir Sedlacik <salo@Xtrmntr.org>
List: current-users
Date: 11/13/2006 23:31:44
--EVcIhgQsEzAXu06J
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, Nov 13, 2006 at 02:16:17PM -0600, Michael Graff wrote:
> The reason I ask is because bind9 9.4 (and later, of course) will be
> spamming this at the end of ./configure, on NetBSD-current and older,
> with old openssl libraries:
>=20
> WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING=
=20
> WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING=
=20
> WARNING
> WARNING         Your OpenSSL crypto library may be vulnerable to       =
=20
> WARNING         one or more of the the following known security        =
=20
> WARNING         flaws:                                                 =
=20
> WARNING
> WARNING         CAN-2002-0659, CAN-2006-4339, CVE-2006-2937 and        =
=20
> WARNING         CVE-2006-2940.                                         =
=20
> WARNING
> WARNING         It is recommended that you upgrade to OpenSSL          =
=20
> WARNING         version 0.9.8d/0.9.7l (or greater).                    =
=20
> WARNING
> WARNING         You can disable this warning by specifying:            =
=20
> WARNING
> WARNING               --disable-openssl-version-check                  =
=20
> WARNING
> WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING=
=20
> WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING=
=20

http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-023.txt.=
asc

http://mail-index.netbsd.org/source-changes/2006/09/05/0016.html
http://mail-index.netbsd.org/source-changes/2006/09/06/0049.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0010.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0011.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0034.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0035.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0037.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0038.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0039.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0040.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0043.html
http://mail-index.netbsd.org/source-changes/2006/09/08/0045.html

http://mail-index.netbsd.org/source-changes/2006/09/29/0034.html
http://mail-index.netbsd.org/source-changes/2006/10/06/0012.html
http://mail-index.netbsd.org/source-changes/2006/10/06/0013.html


regards,

--=20
-- Lubomir Sedlacik <salo@{NetBSD,Xtrmntr,silcnet}.org>   --

--EVcIhgQsEzAXu06J
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (NetBSD)

iD8DBQFFWPJQiwjDDlS8cmMRAsYaAJ9VDFBNTSZOlUXwTYbQmQz/SbHCFwCfX5Xg
usjfG9OBAGCh/1bmQqCs1Ak=
=aDu8
-----END PGP SIGNATURE-----

--EVcIhgQsEzAXu06J--