ELSA-2010-0054

ULN >
Oracle Linux Errata repository >
ELSA-2010-0054

ELSA-2010-0054 - openssl security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2010-01-20

Description

[0.9.8e-12.1]
- fix CVE-2009-2409 - drop MD2 algorithm from EVP tables (#510197)
- fix CVE-2009-4355 - do not leak memory when CRYPTO_cleanup_all_ex_data()
is called prematurely by application (#546707)

Related CVEs

CVE-2009-2409

CVE-2009-4355

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 5 (i386)	openssl-0.9.8e-12.el5_4.1.src.rpm	80a690ba8e84e8902ebeda161e205370	ELEA-2017-1391
	openssl-0.9.8e-12.el5_4.1.i386.rpm	b09174a927c58250f71ea6f40801b1a7	ELEA-2017-1391
	openssl-0.9.8e-12.el5_4.1.i686.rpm	b1f443d46b493c5c70a1338243ff3b41	ELEA-2017-1391
	openssl-devel-0.9.8e-12.el5_4.1.i386.rpm	ebeffea2be08cf7312fd462bbc80eff7	ELEA-2017-1391
	openssl-perl-0.9.8e-12.el5_4.1.i386.rpm	905b1781317e7660d4db423b477d418b	ELEA-2017-1391

Oracle Linux 5 (ia64)	openssl-0.9.8e-12.el5_4.1.src.rpm	80a690ba8e84e8902ebeda161e205370	ELEA-2017-1391
	openssl-0.9.8e-12.el5_4.1.i686.rpm	b1f443d46b493c5c70a1338243ff3b41	ELEA-2017-1391
	openssl-0.9.8e-12.el5_4.1.ia64.rpm	369dfe4f3f2916cafa8749c0d54bf223	ELEA-2017-1391
	openssl-devel-0.9.8e-12.el5_4.1.ia64.rpm	e8628b32740b494bb891397ee548daf5	ELEA-2017-1391
	openssl-perl-0.9.8e-12.el5_4.1.ia64.rpm	1f52eb5e9ae519827516bb4ca03c2c8b	ELEA-2017-1391

Oracle Linux 5 (x86_64)	openssl-0.9.8e-12.el5_4.1.src.rpm	80a690ba8e84e8902ebeda161e205370	ELEA-2017-1391
	openssl-0.9.8e-12.el5_4.1.i686.rpm	b1f443d46b493c5c70a1338243ff3b41	ELEA-2017-1391
	openssl-0.9.8e-12.el5_4.1.x86_64.rpm	c7fe9c5f245bf568fc412dcc5c1a85ec	ELEA-2017-1391
	openssl-devel-0.9.8e-12.el5_4.1.i386.rpm	ebeffea2be08cf7312fd462bbc80eff7	ELEA-2017-1391
	openssl-devel-0.9.8e-12.el5_4.1.x86_64.rpm	293cd9b9edfdbb1c443ccb040ecb5ce7	ELEA-2017-1391
	openssl-perl-0.9.8e-12.el5_4.1.x86_64.rpm	a65e8e1e520ca39eadce4727b290f1e8	ELEA-2017-1391

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691