Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: CVE-2014-0160 SuSE 12.2 patch?

  1. #1

    Exclamation CVE-2014-0160 SuSE 12.2 patch?

    When will there be a patch for the heartbleed SSL bug for SuSE 12.2?
    Any infos?

    Thanks!

  2. #2

    Default AW: CVE-2014-0160 SuSE 12.2 patch?

    Quote Originally Posted by interways View Post
    When will there be a patch for the heartbleed SSL bug for SuSE 12.2?
    Any infos?
    Why are you posting the same question twice? (http://forums.opensuse.org/showthrea...uSE-12-2-patch)

    Here's the same answer again:
    Never, as 12.2 is out of support since January. See here though: http://forums.opensuse.org/showthrea...ssh-heartbleed

  3. #3

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    Once in English, once German. Easy...

    And for major flaws, there should be updates, even after support phases end!

  4. #4

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    Quote Originally Posted by interways View Post
    Once in English, once German. Easy...
    ???
    Isn't your question in english here as well? Or am I hallucinating?
    Ok, then, why are you posting an english question in the german forum? That's what the english forum is for.

    And for major flaws, there should be updates, even after support phases end!
    No, that's what "end of support" means.
    If you want updates, you have to use a supported distribution.

    If you want longer support than the usual 18 months, use Evergreen or the commercial SUSE Linux Enterprise.

    And I already pointed you to the 12.3 packages built for 12.2 (so they do contain the fix).
    Last edited by wolfi323; 09-Apr-2014 at 04:36.

  5. #5

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    Thanks. Your link did not work, but I found it by searching...

  6. #6

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    Quote Originally Posted by interways View Post
    Thanks. Your link did not work, but I found it by searching...
    Oops, sorry. Something went wrong with copy/paste...
    But the link is correct in your other thread.

    For the record, here it is again: http://forums.opensuse.org/showthrea...ssh-heartbleed
    Last edited by wolfi323; 09-Apr-2014 at 06:01.

  7. #7

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    I zypper install -f openssl with the new repo, but the vulerability still exists afterwards.
    Any ideas?

    Thanks!!

  8. #8
    Join Date
    Jun 2008
    Location
    Podunk
    Posts
    32,339
    Blog Entries
    15

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    Quote Originally Posted by interways View Post
    I zypper install -f openssl with the new repo, but the vulerability still exists afterwards.
    Any ideas?

    Thanks!!
    Hi
    In a nutshell, upgrade to a supported release of openSUSE.... don't you also need to upgrade your certificate as well?
    Cheers Malcolm °¿° SUSE Knowledge Partner (Linux Counter #276890)
    SUSE SLE, openSUSE Leap/Tumbleweed (x86_64) | GNOME DE
    If you find this post helpful and are logged into the web interface,
    please show your appreciation and click on the star below... Thanks!

  9. #9

    Default Re: CVE-2014-0160 SuSE 12.2 patch?

    If it were that easy....
    Hosted system with a provider, distro upgrade breaks system.

  10. #10

    Lightbulb Re: CVE-2014-0160 SuSE 12.2 patch?

    Found the solution!

    For everyone interested:


    zypper addrepo http://download.opensuse.org/reposit....3:Update.repo
    zypper refresh
    zypper install -f openssl
    zypper install -f libopenssl1_0_0

    Thanks malcolmlewis for NOT helping, but wisecracking... Would have been easier if you tried productive tips instead of boilerplate stuff.
    Last edited by malcolmlewis; 09-Apr-2014 at 07:16.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •