Re: Can't patch Heartbleed bug?

To: David Glover <me@davidglover.org>, "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: Re: Can't patch Heartbleed bug?
From: "Dr. Jennifer Nussbaum" <bg271828@yahoo.com>
Date: Thu, 10 Apr 2014 07:06:20 -0700 (PDT)
Message-id: <[🔎] 1397138780.19447.YahooMailNeo@web124502.mail.ne1.yahoo.com>
Reply-to: "Dr. Jennifer Nussbaum" <bg271828@yahoo.com>
In-reply-to: <[🔎] 0F674C1C-B40F-4211-8410-B26DD9EA2544@davidglover.org>
References: <[🔎] 1397134570.73145.YahooMailNeo@web124502.mail.ne1.yahoo.com> <[🔎] 0F674C1C-B40F-4211-8410-B26DD9EA2544@davidglover.org>

> On Thursday, April 10, 2014 9:30 AM, David Glover <me@davidglover.org> wrote:
> > Debian patched the wheezy version of OpenSSL without changing the version 
> number.
> 
> Run:
> dpkg-query -l openssl
> 
> You should see version 1.0.1e-2+deb7u5.
> 
> The "+deb7u5" indicates the heartbleed patch is installed.

No, i didnt have that originally, only after i added security to my sources.list. The original update didnt update this, so it wasnt just the version-number.

I also checked the site using the http://filippo.io/Heartbleed test, and it came up vulnerable. But things are fixed now.

Reply to:

References:
- Can't patch Heartbleed bug?
  - From: "Dr. Jennifer Nussbaum" <bg271828@yahoo.com>
- Re: Can't patch Heartbleed bug?
  - From: David Glover <me@davidglover.org>

Prev by Date: Re: Can't patch Heartbleed bug?
Next by Date: Re: Can't patch Heartbleed bug?
Previous by thread: Re: Can't patch Heartbleed bug?
Next by thread: S-Video on ThinkPad T42 with Debian Jessie - can't get above 800x600
Index(es):
- Date
- Thread