FreeBSD Security Advisory FreeBSD-SA-07:08.openssl

Dag-Erling Smørgrav des at des.no
Thu Oct 4 02:47:00 PDT 2007


Vladimir Terziev <vlady at gbservices.biz> writes:
> I have applied the patch on a FreeBSD 6.2-RELEASE system and several
> of the services (courier-imap, postfix) on the machine stopped.
>
> I got the following error:
>
> /libexec/ld-elf.so.1: /usr/lib/libssl.so.4: Undefined symbol
> "EVP_idea_cbc"

You fat-fingered the update, either by building with a different set of
options than previously, or by checking out only a partial tree.  The
simplest fix is to check out a full RELENG_6_2 tree and build and
install world.

> I compared SSL libraries on the patched system with the same, but on
> unpatched system. The difference, i found, is an extra library in
> /usr/lib, on the patched system -- ``/usr/lib/libssl_p.a''.

That's a profiling version of libssl; it isn't used on a production
system and has no part in this.

DES
-- 
Dag-Erling Smørgrav - des at des.no


More information about the freebsd-security mailing list