ELSA-2015-2616

ULN >
Oracle Linux Errata repository >
ELSA-2015-2616

ELSA-2015-2616 - openssl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2015-12-14

Description

[0.9.8e-37.0.1]
- To disable SSLv2 client connections create the file
/etc/sysconfig/openssl-ssl-client-kill-sslv2 (John Haxby) [orabug 21673934]
- Backport openssl 08-Jan-2015 security fixes (John Haxby) [orabug 20409893]
- fix CVE-2014-3570 - Bignum squaring may produce incorrect results
- fix CVE-2014-3571 - DTLS segmentation fault in dtls1_get_record
- fix CVE-2014-3572 - ECDHE silently downgrades to ECDH [Client]

[0.9.8e-37]
- fix CVE-2015-3195 - X509_ATTRIBUTE memory leak

Related CVEs

CVE-2015-3195

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 5 (i386)	openssl-0.9.8e-37.0.1.el5_11.src.rpm	7fdca8bab672fe5c00907307a46bdcc00cacc7a206ceb0f7645f8e11520311d7	ELEA-2017-1391	ol5_i386_latest
	openssl-0.9.8e-37.0.1.el5_11.src.rpm	7fdca8bab672fe5c00907307a46bdcc00cacc7a206ceb0f7645f8e11520311d7	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-0.9.8e-37.0.1.el5_11.i386.rpm	eb09d80f5e38453ecf58415f2faef13109bb8c759740337279c1cc76d1730642	ELEA-2017-1391	ol5_i386_latest
	openssl-0.9.8e-37.0.1.el5_11.i386.rpm	eb09d80f5e38453ecf58415f2faef13109bb8c759740337279c1cc76d1730642	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-0.9.8e-37.0.1.el5_11.i686.rpm	4c1d77e35afbff2608f84036be5d8617c25bf032ef42b8bffb8bac5e5d1a8749	ELEA-2017-1391	ol5_i386_latest
	openssl-0.9.8e-37.0.1.el5_11.i686.rpm	4c1d77e35afbff2608f84036be5d8617c25bf032ef42b8bffb8bac5e5d1a8749	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-devel-0.9.8e-37.0.1.el5_11.i386.rpm	4bedf915b72a3927437b416c937a1995e5acbdd9619359611277203e4cdd67d6	ELEA-2017-1391	ol5_i386_latest
	openssl-devel-0.9.8e-37.0.1.el5_11.i386.rpm	4bedf915b72a3927437b416c937a1995e5acbdd9619359611277203e4cdd67d6	ELEA-2017-1391	ol5_u11_i386_patch
	openssl-perl-0.9.8e-37.0.1.el5_11.i386.rpm	efdab3aeae68196c5d18801cdacd780826f751c0ac346ae4e2121c68f6593993	ELEA-2017-1391	ol5_i386_latest
	openssl-perl-0.9.8e-37.0.1.el5_11.i386.rpm	efdab3aeae68196c5d18801cdacd780826f751c0ac346ae4e2121c68f6593993	ELEA-2017-1391	ol5_u11_i386_patch

Oracle Linux 5 (ia64)	openssl-0.9.8e-37.0.1.el5_11.src.rpm	7fdca8bab672fe5c00907307a46bdcc00cacc7a206ceb0f7645f8e11520311d7	ELEA-2017-1391	ol5_ia64_latest
	openssl-0.9.8e-37.0.1.el5_11.src.rpm	7fdca8bab672fe5c00907307a46bdcc00cacc7a206ceb0f7645f8e11520311d7	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-0.9.8e-37.0.1.el5_11.i686.rpm	4c1d77e35afbff2608f84036be5d8617c25bf032ef42b8bffb8bac5e5d1a8749	ELEA-2017-1391	ol5_ia64_latest
	openssl-0.9.8e-37.0.1.el5_11.i686.rpm	4c1d77e35afbff2608f84036be5d8617c25bf032ef42b8bffb8bac5e5d1a8749	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-0.9.8e-37.0.1.el5_11.ia64.rpm	9042da0e22d47d94a2399b0d7cf081370eb1a5a9dbcd393354d0196032cabf1e	ELEA-2017-1391	ol5_ia64_latest
	openssl-0.9.8e-37.0.1.el5_11.ia64.rpm	9042da0e22d47d94a2399b0d7cf081370eb1a5a9dbcd393354d0196032cabf1e	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-devel-0.9.8e-37.0.1.el5_11.ia64.rpm	c2cf3e1f38853d809f0977f1545a90429806dc7d88381170bc11ed4fd724b81e	ELEA-2017-1391	ol5_ia64_latest
	openssl-devel-0.9.8e-37.0.1.el5_11.ia64.rpm	c2cf3e1f38853d809f0977f1545a90429806dc7d88381170bc11ed4fd724b81e	ELEA-2017-1391	ol5_u11_ia64_patch
	openssl-perl-0.9.8e-37.0.1.el5_11.ia64.rpm	92bb5cad0f98e2de752540263d693f732bf1d39ec4d9c43fa6266d1c30bd8551	ELEA-2017-1391	ol5_ia64_latest
	openssl-perl-0.9.8e-37.0.1.el5_11.ia64.rpm	92bb5cad0f98e2de752540263d693f732bf1d39ec4d9c43fa6266d1c30bd8551	ELEA-2017-1391	ol5_u11_ia64_patch

Oracle Linux 5 (x86_64)	openssl-0.9.8e-37.0.1.el5_11.src.rpm	7fdca8bab672fe5c00907307a46bdcc00cacc7a206ceb0f7645f8e11520311d7	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-0.9.8e-37.0.1.el5_11.src.rpm	7fdca8bab672fe5c00907307a46bdcc00cacc7a206ceb0f7645f8e11520311d7	ELEA-2017-1391	ol5_x86_64_latest
	openssl-0.9.8e-37.0.1.el5_11.i686.rpm	4c1d77e35afbff2608f84036be5d8617c25bf032ef42b8bffb8bac5e5d1a8749	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-0.9.8e-37.0.1.el5_11.i686.rpm	4c1d77e35afbff2608f84036be5d8617c25bf032ef42b8bffb8bac5e5d1a8749	ELEA-2017-1391	ol5_x86_64_latest
	openssl-0.9.8e-37.0.1.el5_11.x86_64.rpm	8d93a7c826a9ac7c52cafa2bddefaf44b29657150009715668768a7f80496093	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-0.9.8e-37.0.1.el5_11.x86_64.rpm	8d93a7c826a9ac7c52cafa2bddefaf44b29657150009715668768a7f80496093	ELEA-2017-1391	ol5_x86_64_latest
	openssl-devel-0.9.8e-37.0.1.el5_11.i386.rpm	4bedf915b72a3927437b416c937a1995e5acbdd9619359611277203e4cdd67d6	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-devel-0.9.8e-37.0.1.el5_11.i386.rpm	4bedf915b72a3927437b416c937a1995e5acbdd9619359611277203e4cdd67d6	ELEA-2017-1391	ol5_x86_64_latest
	openssl-devel-0.9.8e-37.0.1.el5_11.x86_64.rpm	81dbf74ae3a2e235fd1f9bf7ed3f904b8b469068cfcc59309c41dfc8280efec8	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-devel-0.9.8e-37.0.1.el5_11.x86_64.rpm	81dbf74ae3a2e235fd1f9bf7ed3f904b8b469068cfcc59309c41dfc8280efec8	ELEA-2017-1391	ol5_x86_64_latest
	openssl-perl-0.9.8e-37.0.1.el5_11.x86_64.rpm	7be08401b571b89a0a5ee1dc4d7221dc32527e8344027a053033f6e844341b00	ELEA-2017-1391	ol5_u11_x86_64_patch
	openssl-perl-0.9.8e-37.0.1.el5_11.x86_64.rpm	7be08401b571b89a0a5ee1dc4d7221dc32527e8344027a053033f6e844341b00	ELEA-2017-1391	ol5_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691