Am Fr, den 17.06.2005 schrieb Peter Loron um 1:56:
> I'm running a CentOS 3.4 box. According to yum, the OpenSSL 0.9.7a-33.15
> package I have installed is the latest available. A check of the OpenSSL
> website shows 0.9.7g source being the latest.
>
> Is the CentOS 0.9.7a package patched to cover the same isues that the
> generic 0.9.7 source covers?
> -Pete
The "33.15" indicates the patchlevel of the OpenSSL package. Yes, Red
Hat backports [1] fixes for issues. You can check the rpm --changelog
for CAN numbers and comments. With other words, you don't need to get
the upstream version to be on the safe side.
[1] http://www.redhat.com/advice/speaks_backport.html
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp
Serendipity 02:05:42 up 24 days, 43 users, load average: 0.37, 0.25,
0.20
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : http://lists.centos.org/pipermail/centos/attachments/20050617/1d6181c2/attachment.bin
