De-embargoed OpenSSL CVS
-
https://www.openssl.org/news/secadv_20150108.txt
Taken from here https://www.reddit.com/r/Bitcoin/comments/2rrxq7/on_why_010s_release_notes_say_we_have_reason_to/
which has an interesting comment….
"we have reason to believe that libsecp256k1 is better tested and more thoroughly reviewed than the implementation in OpenSSL"fwiw.
Edit.
https://www.openssl.org/news/openssl-1.0.1-notes.htmlTo check what version you have on pfsense.
Diagnostics, Command Prompt, Execute Shell Command
openssl version
should give you output something like$ openssl version
OpenSSL 1.0.1i-freebsd 6 Aug 2014Now just trying to find out whats involved to see if this can be updated.
-
Looking at that list, most of those don't affect pfSense at all (like DTLS stuff), the others are fairly minor. Don't try updating that library yourself as it's likely to break things.