ELSA-2015-1115

ELSA-2015-1115 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2015-06-15

Description


[1.0.1e-42.8]
- improved fix for CVE-2015-1791
- add missing parts of CVE-2015-0209 fix for corectness although unexploitable

[1.0.1e-42.7]
- fix CVE-2014-8176 - invalid free in DTLS buffering code
- fix CVE-2015-1789 - out-of-bounds read in X509_cmp_time
- fix CVE-2015-1790 - PKCS7 crash with missing EncryptedContent
- fix CVE-2015-1791 - race condition handling NewSessionTicket
- fix CVE-2015-1792 - CMS verify infinite loop with unknown hash function
- fix CVE-2015-3216 - regression in RAND locking that can cause segfaults on
read in multithreaded applications


Related CVEs


CVE-2014-8176
CVE-2015-1789
CVE-2015-1790
CVE-2015-1791
CVE-2015-1792
CVE-2015-3216

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) openssl-1.0.1e-30.el6_6.11.src.rpmfb290562f425443c86b2c4bc61d9569bELBA-2017-3532
openssl-1.0.1e-30.el6_6.11.i686.rpm937584256af654c23a4ee501a543ca35ELBA-2017-3532
openssl-devel-1.0.1e-30.el6_6.11.i686.rpmaa258d680f0d0062cb23f9b50ff094afELBA-2017-3532
openssl-perl-1.0.1e-30.el6_6.11.i686.rpmf0aa9ce187081af5339d9f993f99a48eELBA-2017-3532
openssl-static-1.0.1e-30.el6_6.11.i686.rpm8b44e12a63741e977992b83c34ec729aELBA-2017-3532
Oracle Linux 6 (x86_64) openssl-1.0.1e-30.el6_6.11.src.rpmfb290562f425443c86b2c4bc61d9569bELBA-2017-3532
openssl-1.0.1e-30.el6_6.11.i686.rpm937584256af654c23a4ee501a543ca35ELBA-2017-3532
openssl-1.0.1e-30.el6_6.11.x86_64.rpmb1f595e0c0a3c24dad374c73b2ffc8d8ELBA-2017-3532
openssl-devel-1.0.1e-30.el6_6.11.i686.rpmaa258d680f0d0062cb23f9b50ff094afELBA-2017-3532
openssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm8df07592b5a2992a265b7cd0a1975830ELBA-2017-3532
openssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm1c89985c0b59235927dc955ff0bc98b5ELBA-2017-3532
openssl-static-1.0.1e-30.el6_6.11.x86_64.rpm5e8bef34e46f323c5b0dcf37cbb040bdELBA-2017-3532
Oracle Linux 7 (x86_64) openssl-1.0.1e-42.el7_1.8.src.rpm5ec504b92fdb3e49416b5f0ebc18ff42ELSA-2017-3518
openssl-1.0.1e-42.el7_1.8.x86_64.rpm3473698c7fe6fad24475fbbc6bf7cb84ELSA-2017-3518
openssl-devel-1.0.1e-42.el7_1.8.i686.rpmda72851172032762c6085522a8e2877bELSA-2017-3518
openssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm5e8bb6f88e36cccefef5188892231207ELSA-2017-3518
openssl-libs-1.0.1e-42.el7_1.8.i686.rpm1ff6c3163073fb98bf5371098fad4156ELSA-2017-3518
openssl-libs-1.0.1e-42.el7_1.8.x86_64.rpmaeb3c98afa93d3700802a0bc33c60041ELSA-2017-3518
openssl-perl-1.0.1e-42.el7_1.8.x86_64.rpmb38c2af299727819c98f6e3e8c976430ELSA-2017-3518
openssl-static-1.0.1e-42.el7_1.8.i686.rpm6d34a484e57479bd7c0908fa744ee175ELSA-2017-3518
openssl-static-1.0.1e-42.el7_1.8.x86_64.rpm62c47637edc09125cf37aeaf3d8a6871ELSA-2017-3518



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete