[FUG-BR] [Fwd: [FreeBSD-Announce] HEADSUP! OpenSSL "Heartbleed" bug]
Renato Botelho
rbgarga em gmail.com
Terça Abril 8 18:24:11 BRT 2014
-------- Forwarded Message --------
From: FreeBSD Security Officer <security-officer at freebsd.org>
Reply-to: freebsd-security at freebsd.org
To: FreeBSD Security Advisories <security-advisories at freebsd.org>
Subject: [FreeBSD-Announce] HEADSUP! OpenSSL "Heartbleed" bug
Date: Tue, 8 Apr 2014 20:42:29 GMT
Hi,
This is a heads-up for the OpenSSL "Heartbleed" bug.
FreeBSD port security/openssl have been patched on 2014-04-07 21:46:40
UTC (head, r350548) and 2014-04-07 21:48:07 UTC (branches/2014Q2, r350549).
FreeBSD base system have been patched on 2014-04-08 18:27:32 UTC (head,
r264265), 2014-04-08 18:27:39 UTC (stable/10, r264266), 2014-04-08
18:27:46 UTC (releng/10.0, r264267). The update is available with
freebsd-update. All other supported FreeBSD branches are not affected
by this issue.
Users who use TLS client and/or server are strongly advised to apply
updates immediately.
Because of the nature of this issue, it's also recommended for system
administrators to consider revoking all of server certificate, client
certificate and keys that is used with these systems and invalidate
active authentication credentials with a forced passphrase change.
Formal security advisories would be announced later today.
_______________________________________________
freebsd-announce at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-announce
To unsubscribe, send any mail to "freebsd-announce-unsubscribe at freebsd.org"
--
Renato Botelho
Mais detalhes sobre a lista de discussão freebsd