Yes, I did restart the system. I think I've found the solution in the meantime: it's not sufficient to just update the openssl package, it's also necessary to update libssl1.0.0. After doing this and restarting nginx, the system does not respond to heartbeat requests anymore. Sorry, this was not clear for me just by reading the security note.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1304304 Title: nginx ubuntu package possibly affected by CVE 2014-0160 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1304304/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
