openssl upgrade question

d-bugger · n00b Joined: 21 Oct 2002 Posts: 6 Location: Belgium

I have a question on upgrading openssl:
Should I remerge all ebuilds who depend on it?

I'm a bit refering to the GLSA for openssl anounced today ...

Maybe this depends on what bugs were fixed?

cram · Posted: Thu Feb 20, 2003 10:22 pm Post subject:

Zu` · l33t Joined: 26 May 2002 Posts: 716 Location: BE

I've been wondering about this aswell, many times.

Can someone confirm it's really not needed ?

I think, if you want to be 100% sure, you could rebuild these packages:

psp · Posted: Fri Feb 21, 2003 1:41 pm Post subject:

This shouldn't be a problem _UNLESS_ the binaries statically compile ssl into themselves...

taveren · Posted: Fri Feb 21, 2003 2:14 pm Post subject:

I just upgraded to 0.9.7a, it contains a very large warning that you must re-emerge everything that compiles against it. Now, this is most likely because I came up from 0.9.6h, but I can confirm that wget (which is compiled against 0.9.6h), doesn't work.

If you upgrade, only go up to 0.9.6i if your running something lower than that.

taveren · Posted: Fri Feb 21, 2003 2:39 pm Post subject:

I can also confirm that downgrading back to the previously installed version (in my case, 0.9.6h) will make everything work again, assuming you still have the tar file sitting in /usr/portage/distfiles. If you don't, or try to install a different version, wget will fail, since it was compiled against a different version of OpenSSL.

I downgraded backed to 0.9.6h, and then back up to 0.9.6i and everything still works without re-emergeing anything else. Hope this helps someone.