similar to: SSL vulnerabilities

Hi, I'm currently at CentOS 5.8. I'm using openssl version openssl-0.9.8e-22.el5. The following vulnerability was reported by a Nessus security scan: "SSL/ TLS Renegotion Handshakes MiTm Plaintext Data Injection" As per following link, Redhat has introduced openssl-0.9.8m which fixes this specific issue:

Hi, I'm currently at CentOS 5.8. After some penetration testing, found some high severity OpenSSH issues which would require its upgrade. But till CentOS 5.9 the latest rpm available is openssh-4.3p2-82.el5 (which I'm currently using). Is it fine to upgrade to CentOS 6 rpms while I'm on CentOS 5? Thanks, Anumeha

Dear all, I''m new to traffic shapping although i have gone through marking and HTB queueing but i felt trouble in tc filter . I wonder if any one give me the hints about quantum or r2q. i guess quantum is used when two class has same prio and rate and want to give first priority between them and control the borrowing traffic. It should be set more than MTU too. But my

Hi, I'm currently at CentOS 5.8 and am applying the latest OS updates available for 5.8. I'm seeing following error: error: bind-libs-9.3.6-20.P1.el5_8.6.x86_64.rpm: headerRead failed: hdr blob(48062): BAD, read returned 515 error: bind-libs-9.3.6-20.P1.el5_8.6.x86_64.rpm cannot be installed Similar error is seen for other rpms as well. Any idea? Thanks, Anumeha

CentOS Errata and Security Advisory 2012:0699 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-0699.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 1abe6f07cd98a4eb5d40b149810a120b1ecb8d4d3c84df388c73889267146670 openssl-0.9.8e-22.el5_8.4.i386.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CentOS Errata and Security Advisory 2012:1136 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1136.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: c9546097ba8b063cdf1bacbabf28ff0cccc9bae7665d876458cf01b2eaaa30ae openoffice.org-base-3.1.1-19.10.el5_8.4.i386.rpm

CentOS Errata and Security Advisory 2012:1267 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1267.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 39c8c9238abf9b335f1ed003f35d9e9e3f6b3305308178579825ecc610dfe5d6 bind-9.3.6-20.P1.el5_8.4.i386.rpm

CentOS Errata and Security Advisory 2012:1097 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1097.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 7028c5d98d4a4b2e385f7e93e0e4fb7c31ea34ee141d3bcb7c12bb10dc401eb4 glibc-2.5-81.el5_8.4.i386.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CentOS Errata and Security Advisory 2012:1364 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1364.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: f6e7710824b993e7afff3eba790fe332d12afe3dee68de0c6cc1ebb6e1d00e1b bind97-9.7.0-10.P2.el5_8.4.i386.rpm

CentOS Errata and Security Advisory 2012:1130 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1130.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 99d0a06fd4267a9a28a13bd23ffe9822aabdb4e86320f6768ae8caa15fdcec9b xen-3.0.3-135.el5_8.4.i386.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CentOS Errata and Bugfix Advisory 2012:1348 Upstream details at : https://rhn.redhat.com/errata/RHBA-2012-1348.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 78280698708cd7fe3d7734e38e493c6bb71bfbd6b80c78c163c0cca1789f64ee cman-2.0.115-96.el5_8.4.i386.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CentOS Errata and Bugfix Advisory 2012:1270 Upstream details at : https://rhn.redhat.com/errata/RHBA-2012-1270.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 57af4e07cff2be6edaf4badd91e299277ac1ce29e47e8348d0c5bc540a8b0536 sudo-1.7.2p1-14.el5_8.4.i386.rpm x86_64:

Hi All, I wanted to fix the openssl vulnerabilities (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572) in my CentOS 5.5 and found out that 0.9.8zd has the fixes I am looking for (from the https://www.openssl.org/news/vulnerabilities.html link). But, When I tried to find the openssl-0.9.8zd rpm package, I did not find it in http://mirror.centos.org/centos/5/updates/x86_64/RPMS/. The

just for my curiosity, How can we make sure that its not affected? Is there any script to check whether its vulnerable or not (as in bash shell shock vulnerability test)? On Tue, Mar 31, 2015 at 12:25 PM, Eero Volotinen <eero.volotinen at iki.fi> wrote: > Centos 5 is not affected by this bug, so fix is not available. > > Eero > 31.3.2015 9.48 ap. kirjoitti "Venkateswara