ELSA-2014-1653

ULN >
Oracle Linux Errata repository >
ELSA-2014-1653

ELSA-2014-1653 - openssl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2014-10-16

Description

[0.9.8e-31]
- add support for fallback SCSV to partially mitigate CVE-2014-3566
(padding attack on SSL3)

[0.9.8e-30]
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS
- fix CVE-2014-3505 - doublefree in DTLS packet processing
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS
- fix CVE-2014-3508 - fix OID handling to avoid information leak
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS

[0.9.8e-29]
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability

[0.9.8e-28]
- replace expired GlobalSign Root CA certificate in ca-bundle.crt

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 5 (i386)	openssl-0.9.8e-31.el5_11.src.rpm	3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2	ELEA-2017-1391	ol5_i386_latest
	openssl-0.9.8e-31.el5_11.src.rpm	3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-0.9.8e-31.el5_11.i386.rpm	725fd50b01f4ea4654a41d86ac82beaba68930700ca72784853342a761c27bfc	ELEA-2017-1391	ol5_i386_latest
	openssl-0.9.8e-31.el5_11.i386.rpm	725fd50b01f4ea4654a41d86ac82beaba68930700ca72784853342a761c27bfc	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-0.9.8e-31.el5_11.i686.rpm	f98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445	ELEA-2017-1391	ol5_i386_latest
	openssl-0.9.8e-31.el5_11.i686.rpm	f98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-devel-0.9.8e-31.el5_11.i386.rpm	cf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0	ELEA-2017-1391	ol5_i386_latest
	openssl-devel-0.9.8e-31.el5_11.i386.rpm	cf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-perl-0.9.8e-31.el5_11.i386.rpm	25b3f77951d601cae57b35c0614b410b165dd64830a4c137b69935af5ac078d6	ELEA-2017-1391	ol5_i386_latest
	openssl-perl-0.9.8e-31.el5_11.i386.rpm	25b3f77951d601cae57b35c0614b410b165dd64830a4c137b69935af5ac078d6	ELEA-2017-1391	ol5_u11_i386_patch

Oracle Linux 5 (ia64)	openssl-0.9.8e-31.el5_11.src.rpm	3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2	ELEA-2017-1391	ol5_ia64_latest
	openssl-0.9.8e-31.el5_11.src.rpm	3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-0.9.8e-31.el5_11.i686.rpm	f98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445	ELEA-2017-1391	ol5_ia64_latest
	openssl-0.9.8e-31.el5_11.i686.rpm	f98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-0.9.8e-31.el5_11.ia64.rpm	dfaa7b863fdb4b7caf9b89f6ace64fe7b38939f8e325f3c8a2be2107e2a69a65	ELEA-2017-1391	ol5_ia64_latest
	openssl-0.9.8e-31.el5_11.ia64.rpm	dfaa7b863fdb4b7caf9b89f6ace64fe7b38939f8e325f3c8a2be2107e2a69a65	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-devel-0.9.8e-31.el5_11.ia64.rpm	f11f1e5daca7801764ee44fdc81b0d791ffa9847e1e5786e5010c7347765d5d9	ELEA-2017-1391	ol5_ia64_latest
	openssl-devel-0.9.8e-31.el5_11.ia64.rpm	f11f1e5daca7801764ee44fdc81b0d791ffa9847e1e5786e5010c7347765d5d9	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-perl-0.9.8e-31.el5_11.ia64.rpm	4101644448dfa22840abffe78a9dc3896dcb46e6ea6144870e1d3dc846352629	ELEA-2017-1391	ol5_ia64_latest
	openssl-perl-0.9.8e-31.el5_11.ia64.rpm	4101644448dfa22840abffe78a9dc3896dcb46e6ea6144870e1d3dc846352629	ELEA-2017-1391	ol5_u11_ia64_patch

Oracle Linux 5 (x86_64)	openssl-0.9.8e-31.el5_11.src.rpm	3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-0.9.8e-31.el5_11.src.rpm	3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2	ELEA-2017-1391	ol5_x86_64_latest
	openssl-0.9.8e-31.el5_11.i686.rpm	f98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-0.9.8e-31.el5_11.i686.rpm	f98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445	ELEA-2017-1391	ol5_x86_64_latest
	openssl-0.9.8e-31.el5_11.x86_64.rpm	405e7bda1ab098ee91493d631e5777bad1a58d46fc754a6ad954b5645ac449f1	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-0.9.8e-31.el5_11.x86_64.rpm	405e7bda1ab098ee91493d631e5777bad1a58d46fc754a6ad954b5645ac449f1	ELEA-2017-1391	ol5_x86_64_latest
	openssl-devel-0.9.8e-31.el5_11.i386.rpm	cf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-devel-0.9.8e-31.el5_11.i386.rpm	cf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0	ELEA-2017-1391	ol5_x86_64_latest
	openssl-devel-0.9.8e-31.el5_11.x86_64.rpm	78a7412c4c6b0a5eadecfd84073765ade52c8dc23fd414416881fade1c8f075c	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-devel-0.9.8e-31.el5_11.x86_64.rpm	78a7412c4c6b0a5eadecfd84073765ade52c8dc23fd414416881fade1c8f075c	ELEA-2017-1391	ol5_x86_64_latest
	openssl-perl-0.9.8e-31.el5_11.x86_64.rpm	289a2c7c639e01812789cf876787a20b66c643ddd00d04ba0d7ec18f47702059	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-perl-0.9.8e-31.el5_11.x86_64.rpm	289a2c7c639e01812789cf876787a20b66c643ddd00d04ba0d7ec18f47702059	ELEA-2017-1391	ol5_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691