FreeBSD Security Advisory FreeBSD-SA-14:06.openssl
Xin Li
delphij at delphij.net
Wed Apr 9 22:16:31 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 04/09/14 15:11, Ronald F. Guilmette wrote:
>
> In message <20140409084809.GA2661 at lena.kiev>, Lena at lena.kiev.ua
> wrote:
>
>> Port mail/sendmail-sasl (sendmail+tls+sasl2-8.14.8) depends on
>> the openssl port. You need to upgrade the security/openssl port
>> to openssl-1.0.1_10 and restart sendmail.
>
> I am running 9.1-RELEASE and Apache _without_ any support for
> https.
>
> I am however also running Postfix as my mail server.
>
> Am I affected?
If no security/openssl installed -- you are not.
If security/openssl is installed and is older than 1.0.1_10, and
postfix is configured to use SSL/TLS, and linked against the port
OpenSSL (if they are built after OpenSSL port is installed, consider
this as a "Yes", confirm with ldd /usr/local/libexec/postfix/smtpd and
see if there is /usr/local/lib/libcrypto.so.8), then you are affected.
Cheers,
- --
Xin LI <delphij at delphij.net> https://www.delphij.net/
FreeBSD - The Power to Serve! Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (FreeBSD)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=z2Rc
-----END PGP SIGNATURE-----
More information about the freebsd-security
mailing list