Hey, Just FYI for anybody who might need it. FreeBSD isn't affected by the latest OpenSSL security issues. The issue with the name CVE-2010-1633 isn't relevant as FreeBSD does not yet have OpenSSL 1.0 imported. For CVE-2010-0742 the affected 'CMS' module is not enabled in FreeBSD. References: http://www.openssl.org/news/secadv_20100601.txt http://svn.freebsd.org/viewvc/base/stable/8/secure/lib/libcrypto/Makefile?annotate=196045#l329 -- Simon L. Nielsen Hat: OpenSSL maintainer -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 188 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20100606/b3234d19/attachment.pgp