Project

General

Profile

Bug #10066

Scary message about OpenSSL on SLES when running rudder agent update

Added by Nicolas CHARLES 10 months ago. Updated 9 months ago.

Status:
Released
Priority:
N/A
Category:
Agent
Target version:
Target version (plugin):
Severity:
User visibility:
Effort required:
Priority:

Description

 warning: This version of CFEngine was compiled against OpenSSL < 0.9.8m, using it with a later OpenSSL version is insecure. The current version uses compatibility workarounds that may allow CVE-2009-3555 exploitation.
 warning: Please update your CFEngine package or compile it against your current OpenSSL version.
#zypper info openssl
Dépot: SLES_11_SP3_DVD1
Nom: openssl
Version: 0.9.8j-0.50.1
Arch: x86_64

Related issues

Related to Rudder - User story #10303: Embed openssl on old debian systems Released

Associated revisions

Revision c181a785
Added by Benoît PECCATTE 9 months ago

Fixes #10066: Scary message about OpenSSL on SLES when running rudder agent update

History

#1 Updated by Nicolas CHARLES 10 months ago

  • Subject changed from Scary message about OpenSSL on SLES when running the agent in verbose mode to Scary message about OpenSSL on SLES when running the agent

#2 Updated by Nicolas CHARLES 10 months ago

  • Subject changed from Scary message about OpenSSL on SLES when running the agent to Scary message about OpenSSL on SLES when running rudder agent update

#3 Updated by Vincent MEMBRÉ 10 months ago

  • Target version changed from 4.1.0~beta2 to 4.1.0~beta3

#4 Updated by Vincent MEMBRÉ 9 months ago

  • Target version changed from 4.1.0~beta3 to 4.1.0~rc1

#5 Updated by François ARMAND 9 months ago

Perhaps all it needs is to update openssl version. Or create a new builder with a more recent SP of sles11.

#6 Updated by Benoît PECCATTE 9 months ago

#7 Updated by Benoît PECCATTE 9 months ago

  • Status changed from New to In progress

#8 Updated by Benoît PECCATTE 9 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Benoît PECCATTE to Alexis MOUSSET
  • Pull Request set to https://github.com/Normation/rudder-packages/pull/1272

#9 Updated by Benoît PECCATTE 9 months ago

  • Status changed from Pending technical review to Pending release

#10 Updated by Vincent MEMBRÉ 9 months ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 4.1.0~rc1 which was released today.

Also available in: Atom PDF