On Wed, Mar 02, 2016 at 07:29:02AM +0100, Patrick Schaaf wrote:
> On Tue, Mar 1, 2016 at 11:49 PM, Michal Kubecek <m...@mk-sys.cz> wrote:
> > http://download.opensuse.org/repositories/home:/mkubecek:/branches:/Evergreen_Maintained:/openssl/openSUSE_Evergreen_11.4/
> I'm going to test that on a VM which makes outgoing SSL connections
> (PHP/curl) all through the day.
> First observation, upon updating (together with glibc, openssh and
> other stuff of the last few days), I see this;
> Installing: openssh-5.8p1-4.1 [done]
> Additional rpm output:
> Updating /etc/sysconfig/ssh...
> OpenSSL version mismatch. Built against 1000003f, you have 1000110f
> But it's not only on upgrade; any call to ssh gives that output.
This is surprising as current evergreen 11.4 openssl update (version
1.0.1p-68.2) does present exactly the same version (0x1000110f) which
was one of the reasons why I did cherry pick CVE related fixes from
1.0.1 branch since 1.0.1p instead of simply upgrading to 1.0.1s.
However, looking at the evergreen repository, current evergreen 11.4
openssh package is 5.8p1-11.1. Version 5.8p1-4.1 is what was on 11.4
media. So this may be the reason for incompatibility.
Evergreen mailing list