Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

OpenSSL updates

Discussion in 'Security' started by Hedloff, Aug 1, 2017.

Tags:
  1. Hedloff

    Hedloff Well-Known Member

    Joined:
    Jun 7, 2004
    Messages:
    136
    Likes Received:
    4
    Trophy Points:
    168
    Location:
    Up north!
    cPanel Access Level:
    DataCenter Provider
    Hello,

    Why hasn't OpenSSL version been updated for years?
    On EA3 server:
    root@server [~]# openssl version
    OpenSSL 1.0.1e-fips 11 Feb 2013

    root@server [~]# rpm -qa | grep openssl
    alt-openssl-libs-1.0.2k-2.el6.cloudlinux.10.x86_64
    openssl-1.0.1e-57.el6.x86_64
    openssl-devel-1.0.1e-57.el6.x86_64

    On EA4 server:

    root@server2:/# openssl version
    OpenSSL 1.0.1e-fips 11 Feb 2013

    root@server2:/# rpm -qa | grep openssl
    ea-openssl-1.0.2k-5.el7.cloudlinux.1.x86_64
    openssl-devel-1.0.1e-60.el7_3.1.x86_64
    alt-openssl-libs-1.0.2k-2.el7.cloudlinux.10.x86_64
    openssl-1.0.1e-60.el7_3.1.x86_64
    openssl-libs-1.0.1e-60.el7_3.1.x86_64

    How can customers use version 1.0.2k?

    Changelog:
    /news/changelog.html
     
    #1 Hedloff, Aug 1, 2017
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,342
    Likes Received:
    402
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 Infopro, Aug 1, 2017
  3. Hedloff

    Hedloff Well-Known Member

    Joined:
    Jun 7, 2004
    Messages:
    136
    Likes Received:
    4
    Trophy Points:
    168
    Location:
    Up north!
    cPanel Access Level:
    DataCenter Provider
    That thread did not solve anything.
    1.0.1 is not supported anymore so I'm wondering why it is still used on all our cPanel servers?
    OpenSSL - Wikipedia
     
    #3 Hedloff, Aug 4, 2017
  4. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,749
    Likes Received:
    1,885
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    OpenSSL is provided by the operating system (e.g. CentOS, Red Hat) and is not a package that's developed or published by cPanel. You may find the following command helpful to see which patches have been backported to the version of openssl installed on your system:

    Code:
    rpm -q --changelog openssl | grep CVE
    It lists the patches included with the RPM, as the version number will not always change after an update. Also, since you are using CloudLinux, they provide updates to the OpenSSL package. Here's their latest blog post regarding openssl:

    OpenSSL updated for CloudLinux 6 and CloudLinux 7

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelMichael, Aug 4, 2017
(You must log in or sign up to post here.)
Loading...
Similar Threads - OpenSSL updates
  1. ciao70

    OpenSSL 1.1.1 with TLS 1.3 updates?

    ciao70, Sep 13, 2018, in forum: Security
    Replies:
    3
    Views:
    175
    ciao70
    Sep 21, 2018 at 2:54 PM
  2. meeven

    The certificate chain failed OpenSSL’s verification

    meeven, Jun 12, 2018, in forum: Security
    Replies:
    5
    Views:
    495
    cPanelLauren
    Jun 15, 2018
  3. jtgroup

    The certificate chain failed OpenSSL verification

    jtgroup, May 24, 2018, in forum: Security
    Replies:
    4
    Views:
    1,549
    cPanelMichael
    May 29, 2018
  4. stormthefront

    /opt/cpanel/ea-openssl/lib64 missing

    stormthefront, Apr 18, 2018, in forum: CloudLinux
    Replies:
    4
    Views:
    444
    cPanelLauren
    Apr 19, 2018
  5. RedRabbit

    Install certificate using OpenSSL?

    RedRabbit, Jan 12, 2018, in forum: Security
    Replies:
    1
    Views:
    249
    cPanelMichael
    Jan 18, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice