LinuxQuestions.org - OpenSSL buffer overflow attack

- Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)

- - OpenSSL buffer overflow attack (https://www.linuxquestions.org/questions/linux-software-2/openssl-buffer-overflow-attack-30325/)

warhorse

09-13-2002 07:38 PM

OpenSSL buffer overflow attack

According to this:
http://apache.slashdot.org/article.p...72&threshold=4
Openssl <e is vulnerable to a buffer overflow attack an is prevelent in default installs of many Linux distros. My question is this: I'm installing the newest version from the openssl site. They're tarballs. Do I have to reboot for it to take effect?

Thanks

barrynewt

09-13-2002 08:45 PM

nope,
you usually have to only log out of your account and then back in

rverlander

09-13-2002 10:02 PM

U also needa relink everything linked into it

warhorse

09-13-2002 10:59 PM

Bah, I'll just reboot it. I don't want to mess anything up. Thanks.

stickman

09-14-2002 07:26 PM

After you've rebuilt the OpenSSL binaries, you'll need to relink anything that is statically linked to the libraries, such as SSH or mod_ssl.

All times are GMT -5. The time now is 12:29 PM.