Stay Connected:

ELSA-2007-0964

ELSA-2007-0964 - Important: openssl security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2007-10-12

Description


[0.9.8b-8.3.2]
- more DTLS fixes (#321211)

[0.9.8b-8.3.1]
- fix CVE-2007-3108 - side channel attack on private keys (#322891)
- fix CVE-2007-5135 - off-by-one in SSL_get_shared_ciphers (#309871)
- fix CVE-2007-4995 - out of order DTLS fragments buffer overflow (#321211)


Related CVEs


CVE-2007-3108
CVE-2007-4995
CVE-2007-5135

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) openssl-0.9.8b-8.3.el5_0.2.src.rpm2d1617c3e8ec241f0b477cb675b93fecELEA-2017-1391
openssl-0.9.8b-8.3.el5_0.2.src.rpm913c262a2a030da66762f63d854ff5aeELEA-2017-1391
openssl-0.9.8b-8.3.el5_0.2.i386.rpm6b6d6ece2c3f5ef8fa637e0aeb5a53d9ELEA-2017-1391
openssl-0.9.8b-8.3.el5_0.2.i686.rpm5f36ad046f053552f3da32428b0a0c7bELEA-2017-1391
openssl-devel-0.9.8b-8.3.el5_0.2.i386.rpm5adf222f7a9c8e380907080daaeed555ELEA-2017-1391
openssl-perl-0.9.8b-8.3.el5_0.2.i386.rpm2eeea3288f528f70475730380852f01aELEA-2017-1391
Oracle Linux 5 (x86_64) openssl-0.9.8b-8.3.el5_0.2.src.rpm2d1617c3e8ec241f0b477cb675b93fecELEA-2017-1391
openssl-0.9.8b-8.3.el5_0.2.src.rpm913c262a2a030da66762f63d854ff5aeELEA-2017-1391
openssl-0.9.8b-8.3.el5_0.2.i686.rpm5f36ad046f053552f3da32428b0a0c7bELEA-2017-1391
openssl-0.9.8b-8.3.el5_0.2.x86_64.rpm350ed2851fd73d00b9dd4840fa73ac6aELEA-2017-1391
openssl-devel-0.9.8b-8.3.el5_0.2.i386.rpm5adf222f7a9c8e380907080daaeed555ELEA-2017-1391
openssl-devel-0.9.8b-8.3.el5_0.2.x86_64.rpm3f2fb350e51258c93e824fd7fadeffbbELEA-2017-1391
openssl-perl-0.9.8b-8.3.el5_0.2.x86_64.rpm0e2a427587530d6d22dac45886738e1aELEA-2017-1391



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights