SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264

0001883: update openssl to a more recent version - MantisBT Endian Bugtracker
Endian Issue Tracker





Please see now our new Bugtracker system: JIRA








View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0001883Endian FirewallSecuritypublic2009-05-18 19:472011-09-25 01:18
Reportermike-f 
Assigned To 
PrioritynormalSeverityfeatureReproducibilityhave not tried
StatusconfirmedResolutionopen 
PlatformOSOS Version
Product Version2.2-rc3 
Target Version2.5Fixed in Version 
Summary0001883: update openssl to a more recent version
Descriptionas the current version of the installed openssl-binary is tagged 0.9.7a we should take a look on the following advisories from the openssl-team

http://www.openssl.org/news/vulnerabilities.html [^]

maybe we need to backport some parts to cover some issues?
Additional Informationcurrent RH-version is (backported to) 0.9.8e-7
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/openssl-0.9.8e-7.el5.src.rpm [^]
TagsNo tags attached.
Attached Files

- Relationships
related to 0001872acknowledgedpeter-endian update openssl-CFLAGS to increase speed 
related to 0001796closedpeter-endian SSL should use SHA1 instead of MD5 

-  Notes
(0002358)
mike-f (updater)
2009-05-18 19:51

plz link the following id's

1796
1872
maybe: 1797
(0002373)
peter-endian (administrator)
2009-05-21 18:44

tried it.
openssl from RH*L5 is new enough. (0.9.8e)
it requires fipscheck to be packaged, which requires openssl 0.9.8e with fips support.
afterwards the following packages need a rebuild:

python
neon
curl
ntp
apache
python-curl
postfix
rpm
postgresql
openssh
cyrus-sasl


i think we will not do this right now. maybe after 2.3
(0006151)
vedatkamer (reporter)
2011-04-23 17:31

openssl 1.0+ would be so useful for TSA.
(0007442)
michaeluray (reporter)
2011-09-25 01:18
edited on: 2011-09-25 01:36

openssl 0.9.8 or > would be great to use sha-256.
Is there actually a way to update openssl on a Endian Firewall 2.4.1?


- Issue History
Date Modified Username Field Change
2009-05-18 19:47 mike-f New Issue
2009-05-18 19:51 mike-f Note Added: 0002358
2009-05-19 07:33 luca-endian Relationship added related to 0001872
2009-05-19 07:33 luca-endian Relationship added related to 0001796
2009-05-21 18:44 peter-endian Note Added: 0002373
2009-05-21 18:45 peter-endian Severity minor => feature
2009-05-21 18:45 peter-endian Target Version => future
2010-09-20 18:01 peter-endian Target Version future => 2.5
2010-09-20 18:01 peter-endian Status new => confirmed
2011-04-23 17:31 vedatkamer Note Added: 0006151
2011-09-25 01:18 michaeluray Note Added: 0007442
2011-09-25 01:36 michaeluray Note Edited: 0007442

Copyright © 2005-2008 Endian, SRL. All rights reserved.


Copyright © 2000 - 2012 MantisBT Group
Powered by Mantis Bugtracker