SSL updated
There has been an OpenVMS Seecurity Notification a few days ago; it doesn’t relate to the OpenVMS core but the SSL routines that rea based on OpenSSL.
The note of course notes a download site where you can get the updated version that addresses these vulnerabilities. This is the advantage of Open Source: the update is available regardless you have a contract with HP or not.
I downloaded this new version, installed the layered product:
$ PRODUCT SHOW PRODUCT SSL
------------------------------------ ----------- ---------
PRODUCT KIT TYPE STATE
------------------------------------ ----------- ---------
HP AXPVMS SSL V1.4-493 Full LP Installed
------------------------------------ ----------- ---------
1 item found
$
and restarted WASD to link to the new files.
Thatv should keep the system safe 🙂