ELSA-2015-0715

ELSA-2015-0715 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2015-03-23

Description


[1.0.1e-30.7]
- update fix for CVE-2015-0287 to what was released upstream

[1.0.1e-30.6]
- fix CVE-2015-0209 - potential use after free in d2i_ECPrivateKey()
- fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison
- fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
- fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
- fix CVE-2015-0292 - integer underflow in base64 decoder
- fix CVE-2015-0293 - triggerable assert in SSLv2 server


Related CVEs


CVE-2015-0209
CVE-2015-0286
CVE-2015-0287
CVE-2015-0288
CVE-2015-0289
CVE-2015-0292
CVE-2015-0293

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) openssl-1.0.1e-30.el6_6.7.src.rpmfcd832a76317c11031089cef13c91700ELSA-2021-9150
openssl-1.0.1e-30.el6_6.7.i686.rpm0f3badfecb33d6c8c4334e71145dea0bELSA-2021-9150
openssl-devel-1.0.1e-30.el6_6.7.i686.rpm2b1a6718b8fa2110497d2d652474c96aELSA-2021-9150
openssl-perl-1.0.1e-30.el6_6.7.i686.rpmf28bb760a000a2715e3904d2bf8b0e55ELSA-2021-9150
openssl-static-1.0.1e-30.el6_6.7.i686.rpm3ff0b7767f589c7671935f19e8b46e66ELSA-2021-9150
Oracle Linux 6 (x86_64) openssl-1.0.1e-30.el6_6.7.src.rpmfcd832a76317c11031089cef13c91700ELSA-2021-9150
openssl-1.0.1e-30.el6_6.7.i686.rpm0f3badfecb33d6c8c4334e71145dea0bELSA-2021-9150
openssl-1.0.1e-30.el6_6.7.x86_64.rpm4cbeec8ca61db0c200e71740dd0da931ELSA-2021-9150
openssl-devel-1.0.1e-30.el6_6.7.i686.rpm2b1a6718b8fa2110497d2d652474c96aELSA-2021-9150
openssl-devel-1.0.1e-30.el6_6.7.x86_64.rpm65f41ae38a0fb9b46a1e54f454267b53ELSA-2021-9150
openssl-perl-1.0.1e-30.el6_6.7.x86_64.rpmd065f9bf1bc8e4c964c2661904e7f5d9ELSA-2021-9150
openssl-static-1.0.1e-30.el6_6.7.x86_64.rpm017c26f688408a72a6cbc41159f928e3ELSA-2021-9150



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete