If you are running any https websites you will have to update to a newer version of OpenSSL to avoid the drown vulnerability.
Remove old version and link to the new:
yum install make gcc glibc-devel zlib-devel cd /usr/src wget http://www.openssl.org/source/openssl-1.0.1s.tar.gz # tar -zxf openssl-1.0.1s.tar.gz cd openssl-1.0.1s ./config make make test make install
Check the version of OpenSSL
mv /usr/bin/openssl /root/ ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl
To make sure that you are running the correct version you can test your site against SSLLabs.