FreeBSD Security Advisory FreeBSD-SA-03:18.openssl

Bjoern A. Zeeb bzeeb-lists at lists.zabbadoz.net
Fri Oct 3 17:06:19 PDT 2003


On Fri, 3 Oct 2003, FreeBSD Security Advisories wrote:

Hi,

> V.   Solution
>
> Perform one of the following:
...
> 2) To patch your present system:
...
> c) Recompile the operating system as described in
> <URL: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html >.
>
> Note that any statically linked applications that are not part of the
> base system (i.e. from the Ports Collection or other 3rd-party sources)
> must be recompiled.

this seems to be a default disclaimer for the openssl advisories but
at this point I am asking myself if there are any applications
statically linked against librypto or libssl in the base system ?

from what I can see no API is changed with this patch so wouldn't it be
possible to recompile libssl/libcrypto and install only them instead of
rebuilding the complete base system as suggested (assuming nothing in
the base system is statically linked against one of the two) ?

-- 
Greetings

Bjoern A. Zeeb				bzeeb at Zabbadoz dot NeT
56 69 73 69 74				http://www.zabbadoz.net/


More information about the freebsd-security mailing list