Regarding recent openssl vulnerabilities (USN-2537-1)

14 views

Skip to first unread message

Dmitriy Kalinin

unread,

Mar 20, 2015, 6:34:35 PM3/20/15

to bosh-...@cloudfoundry.org, bosh...@cloudfoundry.org

Hey all,

In response to recently published openssl vulnerabilities and USN-2537-1 [1], BOSH team has released updated Ubuntu Trusty stemcells v2889 [2] that include updated libssl package 1.0.1f-1ubuntu2.11. We recommend to update to the new stemcell.

We will be updating CentOS 6.5 stemcells when updated openssl package is released.

Related note will be posted to vcap-dev list regarding updates to rootfs in cf-release.

[1] http://www.ubuntu.com/usn/usn-2537-1/

[2] https://bosh.io/stemcells

Dmitriy

Reply all

Reply to author

Forward

0 new messages