{"id":2163,"date":"2014-04-29T05:50:12","date_gmt":"2014-04-29T10:50:12","guid":{"rendered":"https:\/\/www.bodhost.com\/blog\/?p=2163"},"modified":"2026-02-26T13:58:48","modified_gmt":"2026-02-26T13:58:48","slug":"check-openssl-vulnerability","status":"publish","type":"post","link":"https:\/\/www.bodhost.com\/blog\/check-openssl-vulnerability\/","title":{"rendered":"How to check OpenSSL vulnerability?"},"content":{"rendered":"<blockquote><p><strong>Please note the following versions of OpenSSL:<\/strong><\/p><\/blockquote>\n<ul>\n<li>OpenSSL 1.0.1 through to 1.0.1f (inclusive) is vulnerable<\/li>\n<li>OpenSSL 1.0.1g is NOT vulnerable<\/li>\n<li>OpenSSL 1.0.0 is NOT vulnerable<\/li>\n<li>OpenSSL 0.9.8 is NOT vulnerable<\/li>\n<\/ul>\n<blockquote><p><strong>To check whether your server is vulnerable, on CentOS \/ Red Hat, run:<\/strong><\/p><\/blockquote>\n<p><span style=\"color: #ff0000;\">rpm -qa openssl*<\/span><\/p>\n<p>Or<\/p>\n<p><span style=\"color: #ff0000;\">yum info openssl | egrep \\&#8221;Package|Version|Release\\&#8221;<\/span><\/p>\n<blockquote><p><strong>On Ubuntu Server:<\/strong><\/p><\/blockquote>\n<p><span style=\"color: #ff0000;\">dpkg -l | grep openssl<\/span><\/p>\n<p>(On Ubuntu, ensure the version returned matches the ones mentioned here.)<\/p>\n<p><em><strong>You can patch \/ upgrade the openssl version yourself. Just run the following commands on your appropriate server(s).<\/strong><\/em><\/p>\n<blockquote><p><strong># For the Linux cPanel server:<\/strong><\/p><\/blockquote>\n<ul>\n<li><span style=\"color: #ff0000;\">yum update openssl -y<\/span><\/li>\n<li><span style=\"color: #ff0000;\">for service in sshd pure-ftpd httpd exim cpanel courier-imap ; do \/etc\/init.d\/$service restart; done<\/span><\/li>\n<li><span style=\"color: #ff0000;\">\/etc\/init.d\/httpd stop;\/etc\/init.d\/httpd startssl<\/span><\/li>\n<\/ul>\n<blockquote><p><strong> # For the Linux Plesk server:<\/strong><\/p><\/blockquote>\n<ul>\n<li><span style=\"color: #ff0000;\"> yum update openssl -y<\/span><\/li>\n<li><span style=\"color: #ff0000;\">\/etc\/init.d\/psa stopall<\/span><\/li>\n<li><span style=\"color: #ff0000;\">\/etc\/init.d\/psa startall<\/span><\/li>\n<li><span style=\"color: #ff0000;\">\/etc\/init.d\/psa restart<\/span><\/li>\n<\/ul>\n<blockquote><p><strong># For the Linux plain server:<\/strong><\/p><\/blockquote>\n<ul>\n<li><span style=\"color: #ff0000;\">* yum update openssl -y<\/span><\/li>\n<li><span style=\"color: #ff0000;\">* Just restart all SSL-enabled services or reboot the system.<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify;\">In the interest of customer security, we would strongly advise to change cPanel\/WHM password and account password of the hosting billing area.<\/p>\n<p><script src=\"https:\/\/apis.google.com\/js\/plusone.js\"><\/script><\/p>\n<div class=\"g-post\" data-href=\"https:\/\/plus.google.com\/103108936330319167182\/posts\/UsbVb5XFMcd\"><\/div>\n<p><strong>Incoming searches related to OpenSSL vulnerability<\/strong><\/p>\n<ul>\n<li>openssl vulnerability database<\/li>\n<li>openssl vulnerability 2009<\/li>\n<li>ssl version 2 vulnerability<\/li>\n<li>openssl security<\/li>\n<li>openssl linux<\/li>\n<li>openssl exploit<\/li>\n<li>openssl buffer overflow<\/li>\n<li>openssl bug<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Please note the following versions of OpenSSL: OpenSSL 1.0.1 through to 1.0.1f (inclusive) is vulnerable OpenSSL 1.0.1g is NOT vulnerable OpenSSL 1.0.0 is NOT vulnerable OpenSSL 0.9.8 is NOT vulnerable To check whether your server is vulnerable, on CentOS \/ Red Hat, run: rpm -qa openssl* Or yum info openssl | egrep \\&#8221;Package|Version|Release\\&#8221; On Ubuntu [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":2204,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[539],"class_list":["post-2163","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-web-hosting","tag-openssl"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/posts\/2163","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/comments?post=2163"}],"version-history":[{"count":16,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/posts\/2163\/revisions"}],"predecessor-version":[{"id":5361,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/posts\/2163\/revisions\/5361"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/media\/2204"}],"wp:attachment":[{"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/media?parent=2163"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/categories?post=2163"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bodhost.com\/blog\/wp-json\/wp\/v2\/tags?post=2163"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}