OpenSSL Patch Release Notes - 8/21/2014
Tenable has released two patch scripts for all supported versions of the Appliance that addresses the OpenSSL vulnerability. The operating system patch updates the OpenSSL package to 0.9.8e-27.el5_10.4, which is not affected. The SecurityCenter patch updates its OpenSSL package to 1.0.1i, which is not affected. This patch has been tested on Tenable Appliance 2.4.1-0, 2.4.1-1, 2.6.1, 2.6.2, and 2.8.1.
The previously released Apache support script needs to be applied first to upgrade the Apache (Also PHP if SC 4.8.1 is installed). If at any point a customer upgrades to an appliance version prior to and including Appliance version 2.8.1, the customer will need to re-apply this patch.
For more information, see the Security Advisory.
File Names & MD5 Checksums