Skip to Content

Installation of the necessary RPMs on Oracle Linux 6 for 'heartbleed’ vulnerability CVE-2014-0160

As you may be aware, a recent discovery with the OpenSSL cryptographic software library exposed a bug which compromises the secret keys used to encrypt

communication. This bug has the potential of exposing the names and passwords of users, along with actual data content.

To prevent this, you have to apply and update some packages depending on the architecture you are using:

Oracle Linux 6 (i386)

openssl-1.0.1e-16.el6_5.7.src.rpm

openssl-1.0.1e-16.el6_5.7.i686.rpm

openssl-devel-1.0.1e-16.el6_5.7.i686.rpm

openssl-perl-1.0.1e-16.el6_5.7.i686.rpm

openssl-static-1.0.1e-16.el6_5.7.i686.rpm

Oracle Linux 6 (x86_64)

openssl-1.0.1e-16.el6_5.7.src.rpm

openssl-1.0.1e-16.el6_5.7.i686.rpm

openssl-1.0.1e-16.el6_5.7.x86_64.rpm

openssl-devel-1.0.1e-16.el6_5.7.i686.rpm

openssl-devel-1.0.1e-16.el6_5.7.x86_64.rpm

openssl-perl-1.0.1e-16.el6_5.7.x86_64.rpm

openssl-static-1.0.1e-16.el6_5.7.x86_64.rpm

Also don't forget to restart the ssh daemon (sshd) after a successful update/install as well.

Regards,

János

Tags: