PCI Scans are failing due to openssl 0.9.7a. Even though backports are recognized the output of "rpm -q --changelog openssl" shows the last patch as Oct 2007. There have been vulnerablities since then including today:
We are on CentOS 4.7 which apparently has no upgrade path on the openssl to the current version. Therefore it seems we will need to upgrade CentOS to a more recent version, 5.x. Is this possible remotely and is there a doc somewhere that shows how to do this?