OpenSSL 1.0.0 is the latest available version for RHEL 6.4
By default, all ciphers and macs are enabled. To fix the SSL/TLS vulnerabilities, the weak ciphers and macs must be explicitly disabled as follows.
In the /etc/ssh/sshd_config, the following two lines must be added :
Restart the SSH daemon :
service sshd restart