similar to: CentOS-announce Digest, Vol 110, Issue 5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Earlier in the day today, we were made aware of a serious issue in openssl as shipped in CentOS-6.5 ( including updates issued since CentOS-6.5 was released ); This issue is addressed in detail at http://heartbleed.com/ Upstream have not released a patched version of openssl, although we are reliably informed that there is quite a bit of effort

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Earlier in the day today, we were made aware of a serious issue in openssl as shipped in CentOS-6.5 ( including updates issued since CentOS-6.5 was released ); This issue is addressed in detail at http://heartbleed.com/ Upstream have not released a patched version of openssl, although we are reliably informed that there is quite a bit of effort

CentOS Errata and Security Advisory 2014:0376 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2014-0376.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 6ceff4bad2608484b9b9ab74b8e9047b593b6b7a6ca5ba3cc16db7d8b447f1d8 openssl-1.0.1e-16.el6_5.7.i686.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CentOS Errata and Bugfix Advisory 2014:0375 Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-0375.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 7d67a5d63fc75d54183502af364c758120ac6fa408c9e66e6fb2c07a92fbcd1e libvirt-0.10.2-29.el6_5.7.i686.rpm

CentOS Errata and Bugfix Advisory 2014:0360 Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-0360.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: a0ab89bbbec043d07fd801a19493c67aab38f0ccbd98fe1f0bd678661bc65317 qemu-guest-agent-0.12.1.2-2.415.el6_5.7.i686.rpm x86_64:

CentOS Errata and Bugfix Advisory 2014:0336 Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-0336.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 5be2e26cc59bddf25e838d52e510b7cc6767d343c5c0911ef2157db466218c9f resource-agents-3.9.2-40.el6_5.7.i686.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

For even more information about "Heartbleed". -Connie Sieh ---------- Forwarded message ---------- Date: Wed, 9 Apr 2014 12:27:54 -0500 From: The SANS Institute <NewsBites at sans.org> Subject: FLASH NewsBites - Heartbleed Open SSL Vulnerability FLASH NewsBites - Heartbleed Open SSL Vulnerability FLASH NewsBites are issued only when a security event demands global and immediate

When I query for installed package on the system, I get following result: # yum list installed openssl Loaded plugins: fastestmirror, tsflags, verify, versionlock Loading mirror speeds from cached hostfile Installed Packages openssl.x86_64 1.0.1e-16.el6_5.4 @updates/$releasever When I try to install already installed package (just playing with yum), I get following result: # yum install

While updating a CentOS 6 Xen domU server with yum I received the following error: Updating : libvirt-0.10.2-29.el6_5.7.i686 65/168 Non-fatal POSTIN scriptlet failure in rpm package libvirt-0.10.2-29.el6_5.7.i686 warning: %post(libvirt-0.10.2-29.el6_5.7.i686) scriptlet failed, exit status 1 After a reboot everything seems to run fine. Anything I should be considered about? Regards,

CentOS Errata and Bugfix Advisory 2014:0857 Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-0857.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: ce5d7e96fa28ee7d84c1552627670af1979e288fd04464f5130972dda02ff67c ksh-20120801-10.el6_5.7.i686.rpm x86_64:

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi list, I searched the web for bug reports regarding this phenomenon I see on *multiple* machines of a customer, however, I didn't find an exact fit. So, I'd like to ask here whether anyone else has run into this. I have multiple CentOS 6 machines running using KVM to virtualize a bunch of machines on them (LVM-based). Software releases

Hello everyone, we are running a central server (CentOS 6.5, dovecot-2.0.9-7.el6 with a small patch to disable the IMAP CREATE command, and openssl-1.0.1e-16.el6_5.7) and distribute standard client software to customer( site)s. The clients do IMAPS connects in regular intervals (no IDLE, no lingering logins) and authenticate with certs issued by a dedicated PKI ("auth_ssl_username_from_cert

Subject: Heartbleed Toolkit | Secure, Detect, & Repair Date: Thu, 10 Apr 2014 18:12:16 -0400 From: Red Hat <email at engage.redhat.com> View in a Web Browser <http://app.engage.redhat.com/e/es.aspx?s=1795&e=352069&elq=852ad1748d834dbeac7f2adf6f4b1679> "Follow us on Twitter"

On Sun, January 11, 2015 7:29 pm, Keith Keller wrote: > On 2015-01-12, Valeri Galtsev <galtsev at kicp.uchicago.edu> wrote: >> >> PS I guess I just mention it. I'm quite happy about CentOS (or RedHat if >> I >> look back). One day I realized how happy I am that I chose RedHat way >> back, - that was when all Debian (and its clones like Ubuntu,...) admins

On 01/11/2015 09:24 PM, Valeri Galtsev wrote: > On Sun, January 11, 2015 7:29 pm, Keith Keller wrote: >> On 2015-01-12, Valeri Galtsev <galtsev at kicp.uchicago.edu> wrote: >>> PS I guess I just mention it. I'm quite happy about CentOS (or RedHat if >>> I >>> look back). One day I realized how happy I am that I chose RedHat way >>> back, -

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

Hi, Can we upgrade the OpenSSL version on earlier CentOS Versions 6.2/6.3/6.4 with the latest Openssl version which has all the latest openssl vulnerability fixes from Cent OS repo. Will there be any dependency with the openssl version with CentOS versions upgrading openssl 1.0.0 to openssl 1.0.1e latest version. Can we upgrade with the latest OPENSSL version on older CentOS Versions as there