Re: FreeBSD Security Advisory FreeBSD-SA-07:08.openssl



Vladimir Terziev <vlady@xxxxxxxxxxxxxx> writes:
I have applied the patch on a FreeBSD 6.2-RELEASE system and several
of the services (courier-imap, postfix) on the machine stopped.

I got the following error:

/libexec/ld-elf.so.1: /usr/lib/libssl.so.4: Undefined symbol
"EVP_idea_cbc"

You fat-fingered the update, either by building with a different set of
options than previously, or by checking out only a partial tree. The
simplest fix is to check out a full RELENG_6_2 tree and build and
install world.

I compared SSL libraries on the patched system with the same, but on
unpatched system. The difference, i found, is an extra library in
/usr/lib, on the patched system -- ``/usr/lib/libssl_p.a''.

That's a profiling version of libssl; it isn't used on a production
system and has no part in this.

DES
--
Dag-Erling Smørgrav - des@xxxxxx
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"