Skip to content

Instantly share code, notes, and snippets.

@centminmod
Last active August 29, 2015 14:01
Show Gist options
  • Save centminmod/7e0a38b394d5d2f8fc7a to your computer and use it in GitHub Desktop.
Save centminmod/7e0a38b394d5d2f8fc7a to your computer and use it in GitHub Desktop.
#!/bin/bash
echo "###################################"
echo "Patching OpenSSL 1.0.1g"
echo "###################################"
echo "CVE-2010-5298"
echo "http://www.cvedetails.com/cve/CVE-2010-5298/"
echo "####################################"
echo ""
cd /svr-setup
rm -rf openssl-1.0.1g*
wget http://www.openssl.org/source/openssl-1.0.1g.tar.gz
tar xfvz openssl-1.0.1g.tar.gz
cd openssl-1.0.1g
cd ssl
rm -rf releasebuffer.patch
wget -cnv http://centminmod.com/centminmodparts/openssl/patches/releasebuffer.patch
patch < releasebuffer.patch
echo "####################################"
echo
echo "OpenSSL 1.0.1g patched"
echo
echo "####################################################"
echo "Next steps:"
echo
echo "* Set OPENSSL_VERSION='1.0.1g' version set in centmin.sh"
echo "* Run centmin.sh menu option #4 recompile Nginx"
echo "* When prompted if you want to recompile OpenSSL - select YES"
echo "####################################################"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment