Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Sun 21 Dec 2014, 06:53
All times are UTC - 4
 Forum index » House Training » Bugs ( Submit bugs )
CVE-2014-0160 OpenSSL Heartbleed
Moderators: Flash, Ian, JohnMurga
Post new topic   Reply to topic View previous topic :: View next topic
Page 3 of 4 [58 Posts]   Goto page: Previous 1, 2, 3, 4 Next
Author Message
8-bit


Joined: 03 Apr 2007
Posts: 3398
Location: Oregon

PostPosted: Sat 12 Apr 2014, 00:24    Post subject:  

OscarTalks wrote:
Hope it is OK for me to mention in this thread that I have compiled OpenSSL 1.0.1g in Dpup Wheezy if anyone would like to test it.
http://www.murga-linux.com/puppy/viewtopic.php?t=80546&start=676
Precise and/or Slackware 14.0 packages will usually not work in Wheezy because (among other things) they have glibc 2.15 and Wheezy has glibc 2.13


I have tried your Pet in Slacko 5.5 as well as Puppy Precise 5.71, and Puppy Blue (Quirky Tahr) in disguise) and it updated according to a check as the new version.
Back to top
View user's profile Send private message 
shinobar


Joined: 28 May 2009
Posts: 2631
Location: Japan

PostPosted: Sat 12 Apr 2014, 05:48    Post subject: the pet for Dpup  

8-bit wrote:
OscarTalks wrote:
Hope it is OK for me to mention in this thread that I have compiled OpenSSL 1.0.1g in Dpup Wheezy if anyone would like to test it.
http://www.murga-linux.com/puppy/viewtopic.php?t=80546&start=676
Precise and/or Slackware 14.0 packages will usually not work in Wheezy because (among other things) they have glibc 2.15 and Wheezy has glibc 2.13


I have tried your Pet in Slacko 5.5 as well as Puppy Precise 5.71, and Puppy Blue (Quirky Tahr) in disguise) and it updated according to a check as the new version.

Do not install the pet for Dpup on other Puppies.
Debian installs the libraries in /usr/lib, remaining old libraries in /lib which Ubuntu and Slackware place.
For Dpup is for Dpup, not for other Puppies.

_________________
Google Chrome portable
Downloads for Puppy Linux http://shino.pos.to/linux/downloads.html
Back to top
View user's profile Send private message Visit poster's website 
fantazam

Joined: 07 Nov 2008
Posts: 4
Location: Croatia

PostPosted: Sat 12 Apr 2014, 07:25    Post subject:  

For Puppy Precise 5.7.1 i installed these 2 packages and now i have updated openssl "OpenSSL 1.0.1g 7 Apr 2014"

https://launchpad.net/~george-edison55/+archive/openssl-heartbleed-fix/+files/libssl1.0.0_1.0.1g-1ppa1%7Eprecise1_i386.deb

https://launchpad.net/~george-edison55/+archive/openssl-heartbleed-fix/+files/openssl_1.0.1g-1ppa1%7Eprecise1_i386.deb
Back to top
View user's profile Send private message 
mikeslr


Joined: 16 Jun 2008
Posts: 841
Location: Union New Jersey USA

PostPosted: Sat 12 Apr 2014, 10:07    Post subject: openssl heartbleed fix for Precise and Raring  

Thanks fantazam,

For the links to the debs you found for Precise 5.71. They also apparently work to update openssl in Upup raring 3.9.9.2 and upup precise 3.8.3.

mikeslr
Back to top
View user's profile Send private message 
shinobar


Joined: 28 May 2009
Posts: 2631
Location: Japan

PostPosted: Mon 14 Apr 2014, 04:06    Post subject: Update for Ubuntu compatible Puppies  

Ubuntu provides its official deb packages for the fix.
For the Precise Puppy, tahr, you can get them from the Puppy Package Manager.
Follow the post by balloon.
http://murga-linux.com/puppy/viewtopic.php?t=93076&start=18

EDIT: Ubuntu does not provide the fix packages for raring.
See next post by balloon.

_________________
Google Chrome portable
Downloads for Puppy Linux http://shino.pos.to/linux/downloads.html

Last edited by shinobar on Mon 14 Apr 2014, 06:15; edited 1 time in total
Back to top
View user's profile Send private message Visit poster's website 
balloon


Joined: 02 Oct 2013
Posts: 46
Location: Miyagi, Japan

PostPosted: Mon 14 Apr 2014, 05:48    Post subject:    

Oops, there are instructions,
The update with the Ubuntu package is not intended for Upup raring.
Ubuntu 13.04 Raring Ring already for the package update expire.(January, 2014)

The update of OpenSSL by Upup raring needs original build correspondence.
When this cannot support, As for the Internet connection of Rpup raring, danger increases.

_________________
BALLOON a.k.a. Fu-sen. ふうせん Fu-sen. (old: 2 8 6) from Japan
Precise-571JP (Japanese Edition)
Puppy Food ぱぴ〜ふ〜ど http://puppylinux-food.zohosites.com/
Back to top
View user's profile Send private message Visit poster's website 
balloon


Joined: 02 Oct 2013
Posts: 46
Location: Miyagi, Japan

PostPosted: Tue 15 Apr 2014, 21:02    Post subject:  Important notice  

To the main very important person showing .iso,

These security issues have a big influence.
Puppy Linux thinks that it is hard to receive the attack for a client use,
Damage when we received an attack to Puppy is heavy.
There are many tendencies that Puppy Linux packages it and does not update.
This situation is not good.

It is necessary to examine the release of .iso which updated OpenSSL.
(include the Windows .exe version occurring partly)

_________________
BALLOON a.k.a. Fu-sen. ふうせん Fu-sen. (old: 2 8 6) from Japan
Precise-571JP (Japanese Edition)
Puppy Food ぱぴ〜ふ〜ど http://puppylinux-food.zohosites.com/
Back to top
View user's profile Send private message Visit poster's website 
shinobar


Joined: 28 May 2009
Posts: 2631
Location: Japan

PostPosted: Mon 28 Apr 2014, 17:32    Post subject: Fix PET for Precise Puppy  

For all Precise Puppy:
http://shino.pos.to/linux/puppy/openssl-fix-1.0.1-4ubuntu5.12.pet

It contains 2 libraries under /lib from libssl1.0.0_1.0.1-4ubuntu5.12_i386.deb,
/etc/ssl/openssl.cnf from openssl_1.0.1-4ubuntu5.12_i386.deb

Type next command on the terminal to see the openssl updated.
Code:
# openssl version -b
built on: Mon Apr  7 20:31:55 UTC 2014

'Apr 7, 2014' is OK.

_________________
Google Chrome portable
Downloads for Puppy Linux http://shino.pos.to/linux/downloads.html
Back to top
View user's profile Send private message Visit poster's website 
augras

Joined: 11 Nov 2013
Posts: 695
Location: france

PostPosted: Fri 02 May 2014, 09:43    Post subject:  

Hi shinobar,
Thanks for that .pet.
Can i ask to you to make the same thing for raring 3.9.9.2 by pemasu ? Ubuntu raring do not receive any support since 2014-01-27 and there is any .deb for this update. So, if you can it will be a very good thing for raring users.
Thanks,
Philippe
Back to top
View user's profile Send private message 
balloon


Joined: 02 Oct 2013
Posts: 46
Location: Miyagi, Japan

PostPosted: Fri 02 May 2014, 09:54    Post subject:  

As for the .pet file which Shinobar showed, Ubuntu package was made for the cause.

Ubuntu 13.04 is the situation that a package of OpenSSL is not shown now.
This is that it is difficult to offer .pet packag of most suitable OpenSSL for Upup Raring.
I suggest to a person using Upup Raring to stop use, This use continuation is bad.

_________________
BALLOON a.k.a. Fu-sen. ふうせん Fu-sen. (old: 2 8 6) from Japan
Precise-571JP (Japanese Edition)
Puppy Food ぱぴ〜ふ〜ど http://puppylinux-food.zohosites.com/
Back to top
View user's profile Send private message Visit poster's website 
augras

Joined: 11 Nov 2013
Posts: 695
Location: france

PostPosted: Fri 02 May 2014, 12:03    Post subject:  

Thanks for your answer balloon,
but with openssl source maybe is it possible to do something ? I don't know, i just ask.
Philippe
Back to top
View user's profile Send private message 
slavvo67

Joined: 12 Oct 2012
Posts: 501
Location: The other Mr. 305

PostPosted: Sun 04 May 2014, 15:05    Post subject:  

Shinobar:

Why does it still read 1.0.1 after the fix?

Best regards,

Slavvo67
Back to top
View user's profile Send private message 
balloon


Joined: 02 Oct 2013
Posts: 46
Location: Miyagi, Japan

PostPosted: Sun 04 May 2014, 19:30    Post subject:  

I answer in place of Shinobar.

OpenSSL takes measures at 1.0.1g.
However, Ubuntu, Debian, Shackware does not adopt this and makes modifications with a patch.
This will be measures for stability to operate more application.

We begin this work with Precise. (Of the Japanese Edition release only Precise most newly)
Originally we confirmed that OpenSSL included in Precise obtained it from the Ubuntu package.
Shinobar brings the .pet package from the latest Ubuntu package to this.

The method to confirm the application of the patch refers to the past post of this topic.

_________________
BALLOON a.k.a. Fu-sen. ふうせん Fu-sen. (old: 2 8 6) from Japan
Precise-571JP (Japanese Edition)
Puppy Food ぱぴ〜ふ〜ど http://puppylinux-food.zohosites.com/
Back to top
View user's profile Send private message Visit poster's website 
slavvo67

Joined: 12 Oct 2012
Posts: 501
Location: The other Mr. 305

PostPosted: Mon 05 May 2014, 18:25    Post subject:  

Balloon:

That certainly makes sense. Thank you.

Of course, the next question would need to come from this. If I used Shinobar's patch and after noticing no change in version I proceeded to install the 2 deb packages listed, would that still be ok? Now, my SSL Version reads 1.0.1g and everything appears to be working fine. What are your thoughts on this?

Thanks,

Slavvo67
Back to top
View user's profile Send private message 
greengeek

Joined: 20 Jul 2010
Posts: 2751
Location: New Zealand

PostPosted: Sat 17 May 2014, 03:22    Post subject: Re: Fix PET for Precise Puppy  

shinobar wrote:
For all Precise Puppy:
http://shino.pos.to/linux/puppy/openssl-fix-1.0.1-4ubuntu5.12.pet

It contains 2 libraries under /lib from libssl1.0.0_1.0.1-4ubuntu5.12_i386.deb,
/etc/ssl/openssl.cnf from openssl_1.0.1-4ubuntu5.12_i386.deb
I compared the contents of this Precise .pet with the package contents in the slacko repo and I don't understand why there is such a big difference - this pet for Precise has very few files, but the slacko one has many many files and renames and deletions (of certificates etc). I would have expected them to be quite similar. Does anyone know why the number of files is so different? For slacko could i maybe just grab the slack14 openssl.cnf and the 2 slack14 libs, just like in the Precise pet or is there a good reason why the slack14 packages have so much stuff in them??

EDIT : A list of the files included in the slack package can be found 2/3 of the way down the page here:
http://pkgs.org/slackware-14.0/slackware-patches-i486/openssl-1.0.1g-i486-1_slack14.0.txz.html
(keep clicking the "show more" button)
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 3 of 4 [58 Posts]   Goto page: Previous 1, 2, 3, 4 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » House Training » Bugs ( Submit bugs )
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0847s ][ Queries: 13 (0.0077s) ][ GZIP on ]