Bug Heartbleed

[2014.04.11]

In the past days has been published information about the Heartbleed software Bug that could affect almost all the Linux based systems or other programs that use the OpenSSL library.

The University of Aveiro central servers have been already verified and aren’t affected or don't have the bug.

All the clients that run Windows and MAC OS X are not affected by the Heartbleed Bug.

Information for system administrators:
  • Everyone that manages a Linux server should proceed as stated below.
  • The bug is exploited only on server systems, but it is likely that will also appear shortly an exploit to client computers with OpenSSL (normally Linux based).
  • We recommend everyone to update their own Linux based systems (clients or servers) that use OpenSSL versions from 1.0.1 until 1.0.1f, to 1.0.1g.

Potentially Affected Websites 
(
Facebook, Tumblr, Yahoo, Google, Amazon, GoDaddy, Flickr, NetFlix, Youtube, Dropbox,...)
:

Affected Systems (already identified):

  • Debian Wheezy (stable), OpenSSL 1.0.1e-2+deb7u4
  • Ubuntu 12.04.4 LTS, OpenSSL 1.0.1-4ubuntu5.11
  • CentOS 6.5, OpenSSL 1.0.1e-15
  • Fedora 18, OpenSSL 1.0.1e-4
  • OpenBSD 5.3 (OpenSSL 1.0.1c 10 May 2012) and 5.4 (OpenSSL 1.0.1c 10 May 2012)
  • FreeBSD 10.0 - OpenSSL 1.0.1e 11 Feb 2013
  • NetBSD 5.0.2 (OpenSSL 1.0.1e)
  • OpenSUSE 12.2 (OpenSSL 1.0.1c)
  • VMWare (several versions)

You can find further information:

Be caution: Do not follow links that claim to automatically resolve this issue. Do not run updates, unless you already trust the source.

For further information, please contact the sTIC/Helpdesk.





logo_financiador

last updated 12/01/2016
This web site uses cookies without storing personal information that allows the identification of its users. By navigating in this web site you are consenting to the use of these cookies.more information
Para que esta página funcione corretamente deve ativar a execução de Javascript. Se tal não for possível, algumas funcionalidades poderão estar limitadas.