openssl upgrade from 0.9.8x to 0.9.8y to address security vulnerabilit

[Guest Vetri]

Hello Experts,

 

My product is using centos 5.8 and I am trying to upgrade openssl version from 0.9.8w to 0.9.8y to address the following security vulnerabilities CVE-2012-2333, CVE-2013-0166 , CVE-2013-0169.

 

While trying to upgrade I am facing following dependanices and any insight to this will be highly appreciated.

 

[root-M1 store]# openssl version

OpenSSL 0.9.8w 23 Apr 2012

 

[root-M1 store]# rpm -qa | grep openssl

openssl-0.9.8e-22.el5

openssl-0.9.8w-1

 

[root-M1 store]# rpm -Uvh openssl-0.9.8y-1.i386.rpm

error: Failed dependencies:

libcrypto.so.6 is needed by (installed) m2crypto-0.16-8.el5.i386

libcrypto.so.6 is needed by (installed) python-libs-2.4.3-46.el5.i386

libcrypto.so.6 is needed by (installed) openldap-2.3.43-25.el5.i386

libcrypto.so.6 is needed by (installed) net-snmp-libs-5.3.2.2-17.el5.i386

libcrypto.so.6 is needed by (installed) postgresql-libs-8.1.23-1PGDG.rhel5.i386

libcrypto.so.6 is needed by (installed) bind-libs-9.3.6-20.P1.el5.i386

libcrypto.so.6 is needed by (installed) curl-7.15.5-15.el5.i386

libcrypto.so.6 is needed by (installed) libnasl2-2.2.11-27.el5.i386

libcrypto.so.6 is needed by (installed) nmap-4.11-2.i386

libcrypto.so.6 is needed by (installed) wget-1.11.4-2.el5_4.1.i386

libcrypto.so.6 is needed by (installed) nessus-server-2.2.11-27.el5.i386

libcrypto.so.6 is needed by (installed) cyrus-sasl-2.1.22-5.el5_4.3.i386

libcrypto.so.6 is needed by (installed) bind-utils-9.3.6-20.P1.el5.i386

libcrypto.so.6 is needed by (installed) neon-0.25.5-10.el5_4.1.i386

libcrypto.so.6 is needed by (installed) openldap-clients-2.3.43-25.el5.i386

libcrypto.so.6 is needed by (installed) cyrus-sasl-md5-2.1.22-5.el5_4.3.i386

libcrypto.so.6 is needed by (installed) stunnel-4.15-2.el5.1.i386

libcrypto.so.6 is needed by (installed) distcache-1.4.5-14.1.i386

libcrypto.so.6 is needed by (installed) tcpdump-3.9.4-15.el5.i386

libcrypto.so.6 is needed by (installed) ntp-4.2.2p1-15.el5.centos.1.i386

libcrypto.so.6 is needed by (installed) net-snmp-5.3.2.2-17.el5.i386

libcrypto.so.6 is needed by (installed) fipscheck-1.2.0-1.el5.i386

libcrypto.so.6 is needed by (installed) net-snmp-utils-5.3.2.2-17.el5.i386

libcrypto.so.6 is needed by (installed) postgresql-8.1.23-1PGDG.rhel5.i386

libcrypto.so.6 is needed by (installed) postgresql-server-8.1.23-1PGDG.rhel5.i386

libcrypto.so.6 is needed by (installed) postgresql-contrib-8.1.23-1PGDG.rhel5.i386

libcrypto.so.6 is needed by (installed) cavium-1.0-7.i386

libssl.so.6 is needed by (installed) m2crypto-0.16-8.el5.i386

libssl.so.6 is needed by (installed) python-libs-2.4.3-46.el5.i386

libssl.so.6 is needed by (installed) openldap-2.3.43-25.el5.i386

libssl.so.6 is needed by (installed) postgresql-libs-8.1.23-1PGDG.rhel5.i386

libssl.so.6 is needed by (installed) curl-7.15.5-15.el5.i386

libssl.so.6 is needed by (installed) libnasl2-2.2.11-27.el5.i386

libssl.so.6 is needed by (installed) nmap-4.11-2.i386

libssl.so.6 is needed by (installed) wget-1.11.4-2.el5_4.1.i386

libssl.so.6 is needed by (installed) nessus-server-2.2.11-27.el5.i386

libssl.so.6 is needed by (installed) neon-0.25.5-10.el5_4.1.i386

libssl.so.6 is needed by (installed) quota-3.13-5.el5.i386

libssl.so.6 is needed by (installed) openldap-clients-2.3.43-25.el5.i386

libssl.so.6 is needed by (installed) stunnel-4.15-2.el5.1.i386

libssl.so.6 is needed by (installed) distcache-1.4.5-14.1.i386

libssl.so.6 is needed by (installed) postgresql-8.1.23-1PGDG.rhel5.i386

libssl.so.6 is needed by (installed) postgresql-server-8.1.23-1PGDG.rhel5.i386

libssl.so.6 is needed by (installed) postgresql-contrib-8.1.23-1PGDG.rhel5.i386

 

I have created openssl 0.9.8y rpm by using it's source.

 

Any input on this will be really helpful :)

 

Thanks,

Vetri.

 

Continue reading...