possibly silly question regarding freebsd-update
Dewayne Geraghty
dewayne at heuristicsystems.com.au
Tue Mar 30 18:23:58 UTC 2021
On 31/03/2021 12:35 am, tech-lists wrote:
> Hi,
>
> Recently there was
> https://lists.freebsd.org/pipermail/freebsd-security/2021-March/010380.html
> about openssl. Upgraded to 12.2-p5 with freebsd-update and rebooted.
>
> What I'm unsure about is the openssl version.
> Up-to-date 12.1-p5 instances report OpenSSL 1.1.1h-freebsd 22 Sep 2020
>
> Up-to-date stable/13-n245043-7590d7800c4 reports OpenSSL 1.1.1k-freebsd
> 25 Mar 2021
>
> shouldn't the 12.2-p5 be reporting openssl 1.1.1k-freebsd as well?
>
> thanks,
I think you'll find your answer by comparing the changes between
release 12.2-p5 and stable 12.2 below:
https://cgit.freebsd.org/src/commit/?h=releng/12.2&id=af61348d61f51a88b438d41c3c91b56b2b65ed9b
with
https://cgit.freebsd.org/src/commit/?h=stable/12&id=18d07050e60ecc738556f0de56e34817303371a4
stable 12.2 has the full upgrade to openssl 1.1.1k, while release
12.2-p5 addresses the specific vulnerability(s).
Regards, Dewayne
PS cgit I'm told is the source of truth :)
More information about the freebsd-stable
mailing list