Solved

Detailed steps to upgrade OpenSSL in RHEL 6.5's RHUA servers

Posted on 2015-01-27
1
138 Views
Last Modified: 2015-02-09
Just about 1-2 weeks ago, a list of CVEs for OpenSSL vulnerabilities were released.

Our version of OpenSSL that's bundled with RHEL 6.5's RHUA servers are affected.

Appreciate if anybody can provide the steps to patch it:

a) I suppose we can't just do "yum" to update only OpenSSL or can we?
    Don't want the version of the RHEL to get upgraded but only fix the
    OpenSSL vulnerabilities

b) do we just do "rpm -e  Current_OpenSSL_Rpm" & then use rpm to
    install the newer/patched version of OpenSSL

c) do provide me the link to download the OpenSSL rpm as well, thanks
0
Comment
Question by:sunhux
1 Comment
 
LVL 61

Accepted Solution

by:
gheist earned 500 total points
Comment Utility
a) you should: yum upgrade openssl ...
b) no way, never ever try that at home. openssl is loaded by ssh among many other programs
c) https://rhn.redhat.com/errata/RHSA-2015-0066.html. When you log in to RHN links appear working.
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

1. Introduction As many people are interested in Linux but not as many are interested or knowledgeable (enough) to install Linux on their system, here is a safe way to try out Linux on your existing (Windows) system. The idea is that you insta…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now