When I was going to install some package on my NAS via ipkg I found there are more than one versions such as:
root#Nas:/opt/etc/init.d# ipkg list | grep openssl
openssl - 0.9.8v-2 - Openssl provides the ssl implementation in libraries libcrypto and libssl, and is needed by many other applications and librari
openssl - 0.9.7m-6 - Openssl provides the ssl implementation in libraries libcrypto and libssl, and is needed by many other applications and librari
Due some dependency issue I need the version 0.9.7. However, if I just type ipkg install openssl it will always install the later, aka the 0.9.8, one.
Does anybody know how to specify the version to install?
This functionality was introduced in opkg 0.3.2, taken from the commit message:
If several versions of a package are available in a repo, opkg defaults
to the latest one. To force opkg to use a different version, the syntax
= is used. For example, in a repo that has
version 1.0, 2.0 and 3.0 of 'a', the following command will install
version 1.0:
opkg install a=1.0
The syntax is the same used by apt-get.
Here's the issue and 0.3.2's release notes
Related
sudo apt install capnproto
This installs v0.7.0 in my ubuntu 20.04. However, i require v0.8.0 to be installed.
Also, i need v0.6.1 to be installed additionally for backward compatibility.
Any solution for these two cases ?
You will probably need to install from source rather than use a distro package. Unfortunately, it sounds like the Ubuntu distro package hasn't been updated in a while.
Instructions for building and installing from source can be found here: https://capnproto.org/install.html
Old versions are available by changing the version number in the download URL to whichever version you need.
Note that all versions of Cap'n Proto are backwards-compatible, so there should be no need to install older versions, unless you need to run a specific complied binary that was linked against a specific old version.
I have a CentOS 7 installation running httpd-2.4.35 and openssl-1.0.2k, but due to vulnerability findings, I need to update OpenSSL to at lease 1.0.2s, preferably u. Unfortunately, I cannot find RPM for these packages, which would make it a lot simpler.
I have tried to upgrade the using the tarball provided by OpenSSL but, although the installation works, httpd still uses Openssl-1.0.2k. It seems that I am not doing all the actions that the RPM installation is doing. Does anyone know if I can find this newer OpenSSL1.0.2 RPM packages somewhere or how to force httpd (installed via RPM) to use another version of OpenSSL?
Thanks!
If you are using OpenSSL 1.0.2k from the RPM package provided by CentOS 7, you are going to receive OpenSSL security updates via yum update until June 2024. Red Hat with RHEL 7, upstream of CentOS 7, is backporting security fixes. This means that there is no rebase to a new version such as 1.0.2s, but 1.0.2k will get a patch added resolving the security flaw. A recently active Red Hat community discussion is covering almost the same topic and referring to the same explanation.
Unfortunately you are not referring to a specific security flaw to provide a specific example. If you would like to know which RPM package fixes CVE-2020-1971, you can visit https://access.redhat.com/security/cve/cve-2020-1971 and figure out there, that errata RHSA-2020:5566 contains the fix, thus RPM package "openssl-1.0.2k-21.el7_9". And if you are e.g. on "openssl-1.0.2k-19.el7" (which can be figured out using e.g. rpm -q openssl), this indeed means you should apply updates using yum update.
when installing Zabbix v3.4 I get the following error message: http://imgur.com/a/xo3tg
Looks like an error in the yum repository. Do you have any suggestions for solutions or something similar?
Best regards
As you can see, there is just 2.2 version of Zabbix (agent, server, proxy, etc.) in that repository.
It seems Zabbix 2.2 (LTS) is the latest version supported by OpenSUSE using its repositories.
By the way, you can install older versions of Zabbix-agent (like 2.2) sending data correctly to newer server/proxy versions (like 3.0 or even 3.2).
I think the major item you will miss with using zabbix-agent older than 3.X is encryption. Other major features work very good.
I attempted to update my version of SVN from 1.7 to 1.8 as per this guide:
http://snippets.khromov.se/subversion-1-8-centos-6/
All seemed to install fine, however now I have an issue when I try to restart Apache:
/usr/sbin/httpd: symbol lookup error: /usr/sbin/httpd: undefined symbol: apr_crypto_init
Does anyone know how to solve this?
Which packages need to be updated?
I had same issue after installing some perl modules.
I did the following to resolve it:
yum remove vulture-common-3.2-185.1.x86_64
cd /usr/lib
ln -sf libaprutil-1.so.0.2.9 libaprutil-1.so.0
ln -sf libapr-1.so.0.2.9 libapr-1.so.0
apr_crypto_init is new with APR-Util 1.4.x. CentOS 6 should already have APR-Util 1.4.x. So either you're not using CentOS 6 which those instructions are made for or you're not using the apr-util/httpd version that comes with CentOS 6.
If you're not using CentOS 6 then I suggest you go get a version built for your distribution from WANdisco's download site (the script that the site you linked to actually is from WANdisco).
If you're using your own httpd version you'll either have to switch or you'll have to build your own copy of Subversion.
I have had similar experiences with other applications using this library and Centos 6.x. I have tracked most of the problems down to using the 'minimum install' version of the OS. From what I have been able to determine, the minimum or light install versions of Centos have a tendency to have older versions of the binaries. For example, my version of APR-Utils are 1.3x even though I am using version 6.6.
This is supposedly done for better stability and backward compatibility from what I can find but it causes some headaches if you aren't aware. You may need to use a more 'complete' version of the OS in order for this library to be the latest version, provided you are starting from scratch.
Is there a way to get an OpenSSL 1.0.x package in Ubuntu 11.04, without building from source ?
apt-get update/upgrade only brings one to 0.9.8g
There's no officially supported way to get it in natty. You might be able to find someone somewhere who's packaged it up, but if you want to use trusted sources you're not going to find it on a version lower than 11.10, and if you want the latest version of openssl you're going to want to go to 12.04