[Full-Disclosure] OpenSSL Vulnerabilities
From: Raju Mathur (full-disclosure@lists.netsys.com)
Date: 08/02/02
- Next message: Steven M. Christey: "[Full-Disclosure] it's all about timing"
- Previous message: Raju Mathur: "[Full-Disclosure] OpenSSH and OpenSSL vulnerabilities"
- Next in thread: Peter Bieringer: "[Full-Disclosure] OpenSSL Vulnerabilities"
- Reply: Peter Bieringer: "[Full-Disclosure] OpenSSL Vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: full-disclosure@lists.netsys.com (Raju Mathur) Date: Fri, 2 Aug 2002 09:39:12 +0530
>>>>> "Tina" == Tina Bird <tbird@precision-guesswork.com> writes:
Tina> The vendors listed in the CERT advisory on the OpenSSL
Tina> vulnerabilities are all producing server-side software:
Tina> http://www.cert.org/advisories/CA-2002-23.html
Tina> Does anyone know if Netscape, Opera, Internet Explorer or
Tina> any of the other browsers are vulnerable to these issues?
Tina> Thanks in advance -- Tina Bird
Here's how I do it [line may wrap]:
for i in /bin/* /usr/bin/* /sbin/* /usr/sbin/* /usr/X11R6/bin/* /usr/local/bin/* ; do if ldd $i | egrep 'libssl' > /dev/null ; then echo $i ; fi ; done
You could change the list of directories you want to search, or use
the output of a find in the for command. I don't think libcrypto has
issues; if it does, make the argument to egrep
'libcrypto|libssl'.
Regards,
-- Raju
-- Raju Mathur raju@kandalaya.org http://kandalaya.org/ It is the mind that moves
- Next message: Steven M. Christey: "[Full-Disclosure] it's all about timing"
- Previous message: Raju Mathur: "[Full-Disclosure] OpenSSH and OpenSSL vulnerabilities"
- Next in thread: Peter Bieringer: "[Full-Disclosure] OpenSSL Vulnerabilities"
- Reply: Peter Bieringer: "[Full-Disclosure] OpenSSL Vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
