freebsd-update on Re: FreeBSD Security Advisory FreeBSD-SA-14:10.openssl
Steven Hartland
killing at multiplay.co.uk
Wed May 14 10:47:34 UTC 2014
----- Original Message -----
From: "Mohacsi Janos" <mohacsi at niif.hu>
To: <freebsd-security at freebsd.org>
Sent: Wednesday, May 14, 2014 11:43 AM
Subject: freebsd-update on Re: FreeBSD Security Advisory FreeBSD-SA-14:10.openssl
> Dear All,
> The freebsd-update a bit suspicious:
> "
> root at skye:/usr/home/mohacsi # freebsd-update fetch
> Looking up update.FreeBSD.org mirrors... 5 mirrors found.
> Fetching metadata signature for 10.0-RELEASE from update3.freebsd.org...
> done.
> Fetching metadata index... done.
> Fetching 2 metadata patches.. done.
> Applying metadata patches... done.
> Inspecting system... done.
> Preparing to download files... done.
> Fetching 11 patches.....10 done.
> Applying patches... done.
>
> The following files will be updated as part of updating to
> 10.0-RELEASE-p3:
> /bin/freebsd-version
> /boot/kernel/ciss.ko
> /boot/kernel/ciss.ko.symbols
> /boot/kernel/kernel
> /boot/kernel/kernel.symbols
> /usr/lib/libssl.a
> /usr/lib/libssl.so.7
> /usr/lib/libssl_p.a
> /usr/lib32/libssl.a
> /usr/lib32/libssl.so.7
> /usr/lib32/libssl_p.a
> "
>
> It seems to me the ciss(4) also updated. Is it intentional? Is it
> harmless?
ciss(4) was included in a seperate errata notice this morning
which detailed how it could cause corruption, so I would expect
that updating it is indeed correct.
Regards
Steve
More information about the freebsd-security
mailing list