1 --- src/main/version.c.orig 2014-11-18 19:56:52 UTC
3 @@ -66,8 +66,7 @@ int ssl_check_version(int allow_vulnerab
5 radlog(L_ERR, "libssl version mismatch. built: %lx linked: %lx",
6 (unsigned long) ssl_built, (unsigned long) ssl_linked);
13 @@ -84,18 +83,6 @@ int ssl_check_version(int allow_vulnerab
15 } else if ((ssl_built & 0xffffff) != (ssl_linked & 0xffffff)) goto mismatch;
17 - if (!allow_vulnerable) {
18 - /* Check for bad versions */
19 - /* 1.0.1 - 1.0.1f CVE-2014-0160 http://heartbleed.com */
20 - if ((ssl_linked >= 0x010001000) && (ssl_linked < 0x010001070)) {
21 - radlog(L_ERR, "Refusing to start with libssl version %s (in range 1.0.1 - 1.0.1f). "
22 - "Security advisory CVE-2014-0160 (Heartbleed)", ssl_version());
23 - radlog(L_ERR, "For more information see http://heartbleed.com");