FreeBSD Security Advisory FreeBSD-SA-09:15.ssl
Michal
ml at infosec.pl
Sat Dec 5 22:29:10 UTC 2009
FreeBSD Security Advisories wrote:
> b) Execute the following commands as root:
>
> # cd /usr/src
> # patch < /path/to/patch
> # cd /usr/src/secure/lib/libcrypto
> # make obj && make depend && make includes && make && make install
>
> NOTE: On the amd64 platform, the above procedure will not update the
> lib32 (i386 compatibility) libraries. On amd64 systems where the i386
> compatibility libraries are used, the operating system should instead
> be recompiled as described in
> <URL:http://www.FreeBSD.org/handbook/makeworld.html>
>
Don't quite understand - do we really have to rebuild and reinstall
whole world on amd64 just to update these libraries?
Rebuilding is not a problem here but reinstalling can be painful because
of host-based IDS, custom chflags and so on. Looks like a terrible waste
of resources.
Is there a way to reinstall just these libraries or to get them from the
net in a secure manner i.e. signed?
Cheers.
Michal
--
"Lost time is never found again." -Benjamin Franklin
More information about the freebsd-security
mailing list