Does pfSense use openssl 3.x at all?
-
A critical fix for openssl 3.x is pending. I'm curious if anyone knows any functions within pfSense that are using openssl 3.x?
https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html -
@bribri007 that would be highly unlikely since the current version I show is
[22.05-RELEASE][admin@sg4860.local.lan]/root: openssl version OpenSSL 1.1.1n-freebsd 15 Mar 2022 [22.05-RELEASE][admin@sg4860.local.lan]/root:An intelligent man is sometimes forced to be drunk to spend time with his fools
If you get confused: Listen to the Music Play
Please don't Chat/PM me for help, unless mod related
SG-4860 25.07.1 | Lab VMs 2.8.1, 25.07.1 -
@johnpoz
Well they withdrew 1.1.1.r , along w. 3.0.6https://www.openssl.org/
Did someone "Zerorize" a pointer again ??? (HeartBleed)
New version should be released Nov-01 between 13 .. 17 UTC
https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.htmlThey are kind'a "URGING OUT LOUD"
.
./Bingo
-
@bingo600 yeah they seem to be having some trouble.. Guess good thing that we are bit behind on 1.1.1n
-
@johnpoz Just a FYI, I have Openssl 1.1.1l on three pfSense "2.6.0-RELEASE" systems that I manage/administor.
-
i have
OpenSSL 1.1.1l-freebsd 24 Aug 2021 [2.6.0-RELEASE][admin@pfsense.local.dev]/root: -
pfSense software does not use OpenSSL 3.x on any version/edition, not even on the newest development snapshots.
-
From
https://thehackernews.com/2022/11/just-in-openssl-releases-patch-for-2.html
Combined with what @jimp said above:
pfSense is not vulnerable at all
/Bingo
-
M mr_snow referenced this topic on
-
M mr_snow referenced this topic on
-
M mr_snow referenced this topic on
