最近腾讯云邮件通知了一个openssl的漏洞,此漏洞在openssl-1.1.1i版本已修复,以下为升级过程。
yum install -y zlib gcc zlib-devel
wget https://www.openssl.org/source/openssl-1.1.1i.tar.gz
tar -xf openssl-1.1.1i.tar.gz
cd openssl-1.1.1i/
./config shared zlib --openssldir=/usr/local/openssl --prefix=/usr/local/openssl
make
make install
mv /usr/local/bin/openssl /usr/local/bin/openssl.bak
ln -sv /usr/local/openssl/bin/openssl /usr/bin/openssl
ldconfig -v
openssl version
如果提示:
openssl: error while loading shared libraries: libssl.so.1.1: cannot open shared object file: No such file or directory
可执行:
ln -sf /usr/local/openssl/lib/libcrypto.so.1.1 /usr/lib/
ln -sf /usr/local/openssl/lib/libssl.so.1.1 /usr/lib/
