ELSA-2015-0716

ULN >
Oracle Linux Errata repository >
ELSA-2015-0716

ELSA-2015-0716 - openssl security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2015-03-23

Description

[1.0.1e-42.4]
- update fix for CVE-2015-0287 to what was released upstream

[1.0.1e-42.3]
- fix CVE-2015-0209 - potential use after free in d2i_ECPrivateKey()
- fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison
- fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
- fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
- fix CVE-2015-0292 - integer underflow in base64 decoder
- fix CVE-2015-0293 - triggerable assert in SSLv2 server

[1.0.1e-42.2]
- fix broken error detection when unwrapping unpadded key

[1.0.1e-42.1]
- fix the RFC 5649 for key material that does not need padding

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	openssl-1.0.1e-42.el7_1.4.src.rpm	b48076667940b961166345c8d9501bd713fd139457bf612cea11654e26b68cc2	ELSA-2017-3518	ol7_x86_64_latest_archive
	openssl-1.0.1e-42.el7_1.4.src.rpm	b48076667940b961166345c8d9501bd713fd139457bf612cea11654e26b68cc2	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-1.0.1e-42.el7_1.4.src.rpm	b48076667940b961166345c8d9501bd713fd139457bf612cea11654e26b68cc2	ELSA-2017-3518	ol7_x86_64_u1_patch
	openssl-1.0.1e-42.el7_1.4.x86_64.rpm	47a200d266c76386736cf2da1178737403bef15277befd3491fe32704eac1b62	ELSA-2017-3518	ol7_x86_64_latest_archive
	openssl-1.0.1e-42.el7_1.4.x86_64.rpm	47a200d266c76386736cf2da1178737403bef15277befd3491fe32704eac1b62	ELSA-2017-3518	ol7_x86_64_u1_patch
	openssl-devel-1.0.1e-42.el7_1.4.i686.rpm	bcfb81f7659b0e7f4b60a2b6e2a0ff4bc155da63776065645b923c0a40e803e8	ELSA-2017-3518	ol7_x86_64_latest_archive
	openssl-devel-1.0.1e-42.el7_1.4.i686.rpm	bcfb81f7659b0e7f4b60a2b6e2a0ff4bc155da63776065645b923c0a40e803e8	ELSA-2017-3518	ol7_x86_64_u1_patch
	openssl-devel-1.0.1e-42.el7_1.4.x86_64.rpm	1b51c4dc2cc37dd91b5505aa3db18145711d69b0bb834a2df8fb9936939aaf0a	ELSA-2017-3518	ol7_x86_64_latest_archive
	openssl-devel-1.0.1e-42.el7_1.4.x86_64.rpm	1b51c4dc2cc37dd91b5505aa3db18145711d69b0bb834a2df8fb9936939aaf0a	ELSA-2017-3518	ol7_x86_64_u1_patch
	openssl-libs-1.0.1e-42.el7_1.4.i686.rpm	ebfdd26ea80a2b0f2ab25a378224cc8f7768efe28282abacdd0cd0ae10191405	ELSA-2017-3518	ol7_x86_64_latest_archive
	openssl-libs-1.0.1e-42.el7_1.4.i686.rpm	ebfdd26ea80a2b0f2ab25a378224cc8f7768efe28282abacdd0cd0ae10191405	ELSA-2017-3518	ol7_x86_64_u1_patch
	openssl-libs-1.0.1e-42.el7_1.4.x86_64.rpm	087cf8ce36c0f3b970e23da7bef241c390441beb52007fdc15354191a40be0bd	ELSA-2017-3518	ol7_x86_64_latest_archive
	openssl-libs-1.0.1e-42.el7_1.4.x86_64.rpm	087cf8ce36c0f3b970e23da7bef241c390441beb52007fdc15354191a40be0bd	ELSA-2017-3518	ol7_x86_64_u1_patch
	openssl-perl-1.0.1e-42.el7_1.4.x86_64.rpm	903775163269005fb6d4d684a6492f4da247afcaec96c05f4d9537aa40e1ff69	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-static-1.0.1e-42.el7_1.4.i686.rpm	837a2528a8c65dcc09cb84d696f59ffda59a330fd8e89021ae1e5cde3ca4eb5d	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-static-1.0.1e-42.el7_1.4.x86_64.rpm	31ca32a694880faf5ccde0cfef67574836858e4b515ed09e8053cc51186f3ad3	ELSA-2017-3518	ol7_x86_64_optional_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691