-------- Forwarded Message -------- From: FreeBSD Security Officer <security-offi...@freebsd.org> Reply-to: freebsd-secur...@freebsd.org To: FreeBSD Security Advisories <security-advisor...@freebsd.org> Subject: [FreeBSD-Announce] HEADSUP! OpenSSL "Heartbleed" bug Date: Tue, 8 Apr 2014 20:42:29 GMT
Hi, This is a heads-up for the OpenSSL "Heartbleed" bug. FreeBSD port security/openssl have been patched on 2014-04-07 21:46:40 UTC (head, r350548) and 2014-04-07 21:48:07 UTC (branches/2014Q2, r350549). FreeBSD base system have been patched on 2014-04-08 18:27:32 UTC (head, r264265), 2014-04-08 18:27:39 UTC (stable/10, r264266), 2014-04-08 18:27:46 UTC (releng/10.0, r264267). The update is available with freebsd-update. All other supported FreeBSD branches are not affected by this issue. Users who use TLS client and/or server are strongly advised to apply updates immediately. Because of the nature of this issue, it's also recommended for system administrators to consider revoking all of server certificate, client certificate and keys that is used with these systems and invalidate active authentication credentials with a forced passphrase change. Formal security advisories would be announced later today. _______________________________________________ freebsd-annou...@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-announce To unsubscribe, send any mail to "freebsd-announce-unsubscr...@freebsd.org" -- Renato Botelho ------------------------- Histórico: http://www.fug.com.br/historico/html/freebsd/ Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd