Visit our home page for VL info. To search the old message board go to http://vectorlinux.com/forum1. The first VL forum is temporarily offline until we can find a host for it. Thanks for your patience.
This release fixes oCERT.org's CVE-2009-0021, a vulnerability affectingthe OpenSSL library relating to the incorrect checking of the returnvalue of EVP_VerifyFinal function.Credit for finding this issue goes to the Google Security Team forfinding the original issue with OpenSSL, and to ocert.org for findingthe problem in NTP and telling us about it.This is a recommended upgrade.