ELSA-2015-0800

ELSA-2015-0800 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2015-04-13

Description


[0.9.8e-33]
- fix CVE-2014-8275 (without introduction of CVE-2015-0286) - various
certificate fingerprint issues
- fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export
ciphersuites and on server
- fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
- fix CVE-2015-0288 - X509_to_X509_REQ NULL pointer dereference
- fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
- fix CVE-2015-0292 - integer underflow in base64 decoder
- fix CVE-2015-0293 - triggerable assert in SSLv2 server


Related CVEs


CVE-2014-8275
CVE-2015-0204
CVE-2015-0287
CVE-2015-0288
CVE-2015-0289
CVE-2015-0292
CVE-2015-0293

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) openssl-0.9.8e-33.0.1.el5_11.src.rpmfd5965e9cbc8c8e7c9723d8cf4175f3cELEA-2017-1391
openssl-0.9.8e-33.0.1.el5_11.i386.rpm4e0f6284970262a892827afd8cb29912ELEA-2017-1391
openssl-0.9.8e-33.0.1.el5_11.i686.rpm65c0223f4189382ed78fff251a9a525dELEA-2017-1391
openssl-devel-0.9.8e-33.0.1.el5_11.i386.rpm5a648e3bd4858534b789c771c3b13549ELEA-2017-1391
openssl-perl-0.9.8e-33.0.1.el5_11.i386.rpm9491300885a64e31671919c5cc6ea606ELEA-2017-1391
Oracle Linux 5 (ia64) openssl-0.9.8e-33.0.1.el5_11.src.rpmfd5965e9cbc8c8e7c9723d8cf4175f3cELEA-2017-1391
openssl-0.9.8e-33.0.1.el5_11.i686.rpm65c0223f4189382ed78fff251a9a525dELEA-2017-1391
openssl-0.9.8e-33.0.1.el5_11.ia64.rpm606278f88eb29740b761417649a82ecfELEA-2017-1391
openssl-devel-0.9.8e-33.0.1.el5_11.ia64.rpm46b2f5275cd94612bf0237dfc588c03eELEA-2017-1391
openssl-perl-0.9.8e-33.0.1.el5_11.ia64.rpm5a5bba949f858912ca54c39c450bcf3dELEA-2017-1391
Oracle Linux 5 (x86_64) openssl-0.9.8e-33.0.1.el5_11.src.rpmfd5965e9cbc8c8e7c9723d8cf4175f3cELEA-2017-1391
openssl-0.9.8e-33.0.1.el5_11.i686.rpm65c0223f4189382ed78fff251a9a525dELEA-2017-1391
openssl-0.9.8e-33.0.1.el5_11.x86_64.rpmec6b03d949a6fed9771c27184d8e306cELEA-2017-1391
openssl-devel-0.9.8e-33.0.1.el5_11.i386.rpm5a648e3bd4858534b789c771c3b13549ELEA-2017-1391
openssl-devel-0.9.8e-33.0.1.el5_11.x86_64.rpmf87f7f7975e77da1b67a9f6eadcf6140ELEA-2017-1391
openssl-perl-0.9.8e-33.0.1.el5_11.x86_64.rpm8e18d3c876c27657402d1faa1981eb27ELEA-2017-1391



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete