Installing SolusVM

Red Hat released an update last August 13, 2014 for Red Hat Enterprise Linux (RHEL) v. 6-7 and, consequently, for CentOS 6 & 7. The update is ranked moderate and seeks to address multiple errors and security issues related to OpenSSL. The vulnerabilities covered by this update are as follows:

  • CVE-2014-3505 –  OpenSSL: DTLS packet processing double free
  • CVE-2014-3506 –  OpenSSL: DTLS memory exhaustion
  • CVE-2014-3507 –  OpenSSL: DTLS memory leak from zero-length fragments
  • CVE-2014-3509 –  OpenSSL: race condition in ssl_parse_serverhello_tlsext
  • CVE-2014-3510 –  OpenSSL: DTLS anonymous (EC)DH denial of service
  • CVE-2014-3511 –  OpenSSL: TLS protocol downgrade attack

The update includes files for i386 and x86_64 for CentOS 6 and files for x86_64 for CentOS 7. The said files have already been uploaded and synced to the mirrors. Download as necessary.

See our Knowledgebase for trending How-To articles.

Comments are closed.