As mentioned by "Chef Server 11.1.4 Release"
OpenSSL packaged in Chef Server 11.1.4 is updated from 1.0.1h to 1.0.1i.
However the latest chef client rpm package chef-11.14.2-1.el6.x86_64 stills
use OpenSSL 1.0.1h.
According to https://www.openssl.org/news/secadv_20140806.txt , the OpenSSL
1.0.1h client is also affected by the issues. Is chef client going to use
OpenSSL 1.0.1i ? Or is it not needed for chef client ?
Thanks in advance.
Jesse Hu, Project Serengeti http://www.projectserengeti.org/