Stay Connected:

ELSA-2020-5476

ELSA-2020-5476 - openssl security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-12-17

Description


[1.1.1g-12]
- Fix CVE-2020-1971 ediparty null pointer dereference

[1.1.1g-11.1]
- Implemented new FIPS requirements in regards to KDF and DH selftests
- Disallow certificates with explicit EC parameters


Related CVEs


CVE-2020-1971

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) openssl-1.1.1g-12.el8_3.src.rpm1198b65b9b2724a835f71df4e6ff8cae-
openssl-1.1.1g-12.el8_3.aarch64.rpm25122b4a5843dd947de177d2dcc4147c-
openssl-devel-1.1.1g-12.el8_3.aarch64.rpm9647170c81447e393e9c3234f53e252d-
openssl-libs-1.1.1g-12.el8_3.aarch64.rpm5f67a736628c8087b73d0a529be64b62-
openssl-perl-1.1.1g-12.el8_3.aarch64.rpmec3eccf938a4227655a6ce6ed9d26ca9-
Oracle Linux 8 (x86_64) openssl-1.1.1g-12.el8_3.src.rpm1198b65b9b2724a835f71df4e6ff8cae-
openssl-1.1.1g-12.el8_3.x86_64.rpmf73ac2ab0427b7ecfff4f259a8be3d6a-
openssl-devel-1.1.1g-12.el8_3.i686.rpmf81fd81285fb4563de9e5a93d01fe72f-
openssl-devel-1.1.1g-12.el8_3.x86_64.rpmc45ff1ef1596d5da5adf0ebc5b6acb4c-
openssl-libs-1.1.1g-12.el8_3.i686.rpm4df2f900b4c0c024c26d85928d0e0642-
openssl-libs-1.1.1g-12.el8_3.x86_64.rpm1385dfad810210c011c157336e9fd83d-
openssl-perl-1.1.1g-12.el8_3.x86_64.rpmeede0b69d4787ccddd22b681fa62b306-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights