On Wed, Mar 17, 2004 at 09:58:10AM -0800, Jesse Keating wrote: Content-Description: signed data > Openssl.org announced an update today. However, when looking at the > advisories, it seems that the openssl that is in RHL 7.2-8.0 is not > effected. It looks to me that these packages _are_ affected. At least for 7.3 it looks like packages listed in RHSA-2004:119-01 (for example http://lwn.net/Articles/76125/ ) need just a modified "Release:" field in specs and that is about it. ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/openssl-0.9.6b-36.src.rpm ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/openssl095a-0.9.5a-24.src.rpm ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/openssl096-0.9.6-25.7.src.rpm Just finished recompiling on RH7.3 an equivalent of openssl-0.9.6b-36.src.rpm and a compilation process runs quite a few tests while doing the job. I will put something in bugzilla when I will check more. Michal -- fedora-legacy-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-legacy-list
