ELSA-2014-0679

ULN >
Oracle Linux Errata repository >
ELSA-2014-0679

ELSA-2014-0679 - openssl security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2014-07-23

Description

[1.0.1e-34.3]
- fix CVE-2010-5298 - possible use of memory after free
- fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment
- fix CVE-2014-0198 - possible NULL pointer dereference
- fix CVE-2014-0221 - DoS from invalid DTLS handshake packet
- fix CVE-2014-0224 - SSL/TLS MITM vulnerability
- fix CVE-2014-3470 - client-side DoS when using anonymous ECDH

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (x86_64)	openssl-1.0.1e-34.el7_0.3.src.rpm	a77e644ff0836d6ce824e47a082d17be	ELSA-2017-3518
	openssl-1.0.1e-34.el7_0.3.x86_64.rpm	785951562d5076ce71664a9ac9602685	ELSA-2017-3518
	openssl-devel-1.0.1e-34.el7_0.3.i686.rpm	3567322901cc13cd90dafb87666a5b94	ELSA-2017-3518
	openssl-devel-1.0.1e-34.el7_0.3.x86_64.rpm	c70664cc1beb10fa1f7c4e6e1e25a403	ELSA-2017-3518
	openssl-libs-1.0.1e-34.el7_0.3.i686.rpm	074cedb6ce4b2ac2c20fe8d8310fe019	ELSA-2017-3518
	openssl-libs-1.0.1e-34.el7_0.3.x86_64.rpm	a538caf8f8bb50e50cd17d8da3d379bf	ELSA-2017-3518
	openssl-perl-1.0.1e-34.el7_0.3.x86_64.rpm	6f2d52e1629a73eb5b7b8be52a9f6021	ELSA-2017-3518
	openssl-static-1.0.1e-34.el7_0.3.i686.rpm	fb65f4c6647a1a9dca5df20c01556544	ELSA-2017-3518
	openssl-static-1.0.1e-34.el7_0.3.x86_64.rpm	3ba4dd1c96f80005b5090c86c28b77e0	ELSA-2017-3518

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691