OpenSSL TLS Heartbeat Security Issue

Tue Apr 8 12:29:16 UTC 2014

# uname -a && openssl version
FreeBSD labxyz 10.0-RELEASE FreeBSD 10.0-RELEASE #0 r264140: Mon Apr  7
11:21:50 BRT 2014     root at labxyz:/usr/obj/usr/src/sys/LABXYZ  amd64
OpenSSL 1.0.1e-freebsd 11 Feb 2013

Looks like a vulnerable OpenSSL, or the freebsd version was compiled
without heartbleed support?

On Tue, Apr 8, 2014 at 8:50 AM, staticsafe <me at staticsafe.ca> wrote:

> On 4/8/2014 07:44, Matthias Petermann wrote:
> > Hello,
> >
> > anyone able to comment on the impact of:
> >
> >    http://heartbleed.com/
> >
> > to recent versions of FreeBSD?
> >
> > Thanks & kind regards,
> > Matthias
> >
>
> [root at ferrovax ~]# uname -a && openssl version
> FreeBSD ferrovax.asininetech.com 9.2-RELEASE-p3 FreeBSD 9.2-RELEASE-p3
> #0: Sat Jan 11 03:25:02 UTC 2014
> root at amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC  amd64
> OpenSSL 0.9.8y 5 Feb 2013
>
> openssl from base, not affected.
> --
> staticsafe
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "
> freebsd-questions-unsubscribe at freebsd.org"
>

-- 
============================
Matheus Weber da Conceição