ELSA-2014-1653

ELSA-2014-1653 - openssl security update

Type:SECURITY
Impact:MODERATE
Release Date:2014-10-16

Description


[0.9.8e-31]
- add support for fallback SCSV to partially mitigate CVE-2014-3566
(padding attack on SSL3)

[0.9.8e-30]
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS
- fix CVE-2014-3505 - doublefree in DTLS packet processing
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS
- fix CVE-2014-3508 - fix OID handling to avoid information leak
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS

[0.9.8e-29]
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability

[0.9.8e-28]
- replace expired GlobalSign Root CA certificate in ca-bundle.crt


Related CVEs



Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 5 (i386) openssl-0.9.8e-31.el5_11.src.rpm3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2ELEA-2017-1391ol5_i386_latest
openssl-0.9.8e-31.el5_11.src.rpm3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2ELEA-2017-1391ol5_u11_i386_patch
openssl-0.9.8e-31.el5_11.i386.rpm725fd50b01f4ea4654a41d86ac82beaba68930700ca72784853342a761c27bfcELEA-2017-1391ol5_i386_latest
openssl-0.9.8e-31.el5_11.i386.rpm725fd50b01f4ea4654a41d86ac82beaba68930700ca72784853342a761c27bfcELEA-2017-1391ol5_u11_i386_patch
openssl-0.9.8e-31.el5_11.i686.rpmf98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445ELEA-2017-1391ol5_i386_latest
openssl-0.9.8e-31.el5_11.i686.rpmf98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445ELEA-2017-1391ol5_u11_i386_patch
openssl-devel-0.9.8e-31.el5_11.i386.rpmcf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0ELEA-2017-1391ol5_i386_latest
openssl-devel-0.9.8e-31.el5_11.i386.rpmcf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0ELEA-2017-1391ol5_u11_i386_patch
openssl-perl-0.9.8e-31.el5_11.i386.rpm25b3f77951d601cae57b35c0614b410b165dd64830a4c137b69935af5ac078d6ELEA-2017-1391ol5_i386_latest
openssl-perl-0.9.8e-31.el5_11.i386.rpm25b3f77951d601cae57b35c0614b410b165dd64830a4c137b69935af5ac078d6ELEA-2017-1391ol5_u11_i386_patch
Oracle Linux 5 (ia64) openssl-0.9.8e-31.el5_11.src.rpm3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2ELEA-2017-1391ol5_ia64_latest
openssl-0.9.8e-31.el5_11.src.rpm3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2ELEA-2017-1391ol5_u11_ia64_patch
openssl-0.9.8e-31.el5_11.i686.rpmf98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445ELEA-2017-1391ol5_ia64_latest
openssl-0.9.8e-31.el5_11.i686.rpmf98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445ELEA-2017-1391ol5_u11_ia64_patch
openssl-0.9.8e-31.el5_11.ia64.rpmdfaa7b863fdb4b7caf9b89f6ace64fe7b38939f8e325f3c8a2be2107e2a69a65ELEA-2017-1391ol5_ia64_latest
openssl-0.9.8e-31.el5_11.ia64.rpmdfaa7b863fdb4b7caf9b89f6ace64fe7b38939f8e325f3c8a2be2107e2a69a65ELEA-2017-1391ol5_u11_ia64_patch
openssl-devel-0.9.8e-31.el5_11.ia64.rpmf11f1e5daca7801764ee44fdc81b0d791ffa9847e1e5786e5010c7347765d5d9ELEA-2017-1391ol5_ia64_latest
openssl-devel-0.9.8e-31.el5_11.ia64.rpmf11f1e5daca7801764ee44fdc81b0d791ffa9847e1e5786e5010c7347765d5d9ELEA-2017-1391ol5_u11_ia64_patch
openssl-perl-0.9.8e-31.el5_11.ia64.rpm4101644448dfa22840abffe78a9dc3896dcb46e6ea6144870e1d3dc846352629ELEA-2017-1391ol5_ia64_latest
openssl-perl-0.9.8e-31.el5_11.ia64.rpm4101644448dfa22840abffe78a9dc3896dcb46e6ea6144870e1d3dc846352629ELEA-2017-1391ol5_u11_ia64_patch
Oracle Linux 5 (x86_64) openssl-0.9.8e-31.el5_11.src.rpm3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2ELEA-2017-1391ol5_u11_x86_64_patch
openssl-0.9.8e-31.el5_11.src.rpm3b6ef3a34c26652b300e494d7cabf4a627193d6de180b67789b3adda1e2901c2ELEA-2017-1391ol5_x86_64_latest
openssl-0.9.8e-31.el5_11.i686.rpmf98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445ELEA-2017-1391ol5_u11_x86_64_patch
openssl-0.9.8e-31.el5_11.i686.rpmf98087cb0318289fddcddc168fa80fec3fc77a5b9be2cb2bebbc863c5707a445ELEA-2017-1391ol5_x86_64_latest
openssl-0.9.8e-31.el5_11.x86_64.rpm405e7bda1ab098ee91493d631e5777bad1a58d46fc754a6ad954b5645ac449f1ELEA-2017-1391ol5_u11_x86_64_patch
openssl-0.9.8e-31.el5_11.x86_64.rpm405e7bda1ab098ee91493d631e5777bad1a58d46fc754a6ad954b5645ac449f1ELEA-2017-1391ol5_x86_64_latest
openssl-devel-0.9.8e-31.el5_11.i386.rpmcf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0ELEA-2017-1391ol5_u11_x86_64_patch
openssl-devel-0.9.8e-31.el5_11.i386.rpmcf18314874ae501a1f98cad9dfb1848e0e03a18df91797638b6643e920176ec0ELEA-2017-1391ol5_x86_64_latest
openssl-devel-0.9.8e-31.el5_11.x86_64.rpm78a7412c4c6b0a5eadecfd84073765ade52c8dc23fd414416881fade1c8f075cELEA-2017-1391ol5_u11_x86_64_patch
openssl-devel-0.9.8e-31.el5_11.x86_64.rpm78a7412c4c6b0a5eadecfd84073765ade52c8dc23fd414416881fade1c8f075cELEA-2017-1391ol5_x86_64_latest
openssl-perl-0.9.8e-31.el5_11.x86_64.rpm289a2c7c639e01812789cf876787a20b66c643ddd00d04ba0d7ec18f47702059ELEA-2017-1391ol5_u11_x86_64_patch
openssl-perl-0.9.8e-31.el5_11.x86_64.rpm289a2c7c639e01812789cf876787a20b66c643ddd00d04ba0d7ec18f47702059ELEA-2017-1391ol5_x86_64_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete