After the heartbleed bug i have updated my openssl to 1.0.1g. But to my shock when today i see my server-status it shows me openssl version 1.0.1e that was vulnerable to Heartbleed.
I have upgraded my openssl through rpm. When i have upgraded i have checked with command openssl version. It gives me output as "OpenSSL 1.0.1g 7 Apr 2014" i.e i have successfully updated the rpm.
I think the effort of upgrading openssl is too much for the benefit involved. It's a core package and many many other packages are linked against it and require it. Given that Redhat backport ... [by TrevorH]