ELSA-2018-0998

ULN >
Oracle Linux Errata repository >
ELSA-2018-0998

ELSA-2018-0998 - openssl security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2018-04-16

Description

[1.0.2k-12.0.1]
- sha256 is used for the RSA pairwise consistency test instead of sha1

[1.0.2k-12]
- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus

[1.0.2k-11]
- fix deadlock in RNG in the FIPS mode in mariadb

[1.0.2k-9]
- fix CVE-2017-3736 - carry propagation bug in Montgomery multiplication

Related CVEs

CVE-2017-3738

CVE-2017-3737

CVE-2017-3736

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_aarch64_latest
	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_aarch64_optional_latest
	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_aarch64_u5_base
	openssl-1.0.2k-12.0.1.el7.aarch64.rpm	194e001f1b14e58b805b4f9e42412edd7d2cbd6763c6357926413d178d047cf9	ELSA-2017-3518	ol7_aarch64_latest
	openssl-1.0.2k-12.0.1.el7.aarch64.rpm	194e001f1b14e58b805b4f9e42412edd7d2cbd6763c6357926413d178d047cf9	ELSA-2017-3518	ol7_aarch64_u5_base
	openssl-devel-1.0.2k-12.0.1.el7.aarch64.rpm	0bf6244679fdef02bd25c889dc1fc176b0d8ba63cc01f1883f0cee3892c6972a	ELSA-2017-3518	ol7_aarch64_latest
	openssl-devel-1.0.2k-12.0.1.el7.aarch64.rpm	0bf6244679fdef02bd25c889dc1fc176b0d8ba63cc01f1883f0cee3892c6972a	ELSA-2017-3518	ol7_aarch64_u5_base
	openssl-libs-1.0.2k-12.0.1.el7.aarch64.rpm	0c908111afc36fcc0743f85c95e360d81f33be66c6675eef50b7bea7539807e5	ELSA-2017-3518	ol7_aarch64_latest
	openssl-libs-1.0.2k-12.0.1.el7.aarch64.rpm	0c908111afc36fcc0743f85c95e360d81f33be66c6675eef50b7bea7539807e5	ELSA-2017-3518	ol7_aarch64_u5_base
	openssl-perl-1.0.2k-12.0.1.el7.aarch64.rpm	16a9632ad685f22b387da26036b30c19bcd1d6bf9a86b72b87dbb432d0b0fe6c	ELSA-2017-3518	ol7_aarch64_optional_latest
	openssl-static-1.0.2k-12.0.1.el7.aarch64.rpm	c3f0db8c702bbc3472c8eea9400ef75295f257188cc0d05afc8f7a4a5847d4b2	ELSA-2017-3518	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_x86_64_latest
	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_x86_64_optional_latest
	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_x86_64_u5_base
	openssl-1.0.2k-12.0.1.el7.src.rpm	fb0f926e4734e4893ba0fce4867ad9c0265f5ad7df15a926d3c845cdd7cc5609	ELSA-2017-3518	ol7_x86_64_u5_developer
	openssl-1.0.2k-12.0.1.el7.x86_64.rpm	97ed89b3ac5f7343df74a6ecc507dcab33465ff8d798e2e65b45335f11937d15	ELSA-2017-3518	exadata_dbserver_19.1.0.0.0_x86_64_base
	openssl-1.0.2k-12.0.1.el7.x86_64.rpm	97ed89b3ac5f7343df74a6ecc507dcab33465ff8d798e2e65b45335f11937d15	ELSA-2017-3518	ol7_x86_64_latest
	openssl-1.0.2k-12.0.1.el7.x86_64.rpm	97ed89b3ac5f7343df74a6ecc507dcab33465ff8d798e2e65b45335f11937d15	ELSA-2017-3518	ol7_x86_64_u5_base
	openssl-1.0.2k-12.0.1.el7.x86_64.rpm	97ed89b3ac5f7343df74a6ecc507dcab33465ff8d798e2e65b45335f11937d15	ELSA-2017-3518	ol7_x86_64_u5_developer
	openssl-devel-1.0.2k-12.0.1.el7.i686.rpm	74a71ceef98adfacbf4690d4d4164d11d5b5f63df6ca81439f3dbc3fade772f6	ELSA-2017-3518	ol7_x86_64_latest
	openssl-devel-1.0.2k-12.0.1.el7.i686.rpm	74a71ceef98adfacbf4690d4d4164d11d5b5f63df6ca81439f3dbc3fade772f6	ELSA-2017-3518	ol7_x86_64_u5_base
	openssl-devel-1.0.2k-12.0.1.el7.i686.rpm	74a71ceef98adfacbf4690d4d4164d11d5b5f63df6ca81439f3dbc3fade772f6	ELSA-2017-3518	ol7_x86_64_u5_developer
	openssl-devel-1.0.2k-12.0.1.el7.x86_64.rpm	fde897d1cd33325d85d85443fcf40eb968660c6ca75d55f843d82554da3d65c1	ELSA-2017-3518	ol7_x86_64_latest
	openssl-devel-1.0.2k-12.0.1.el7.x86_64.rpm	fde897d1cd33325d85d85443fcf40eb968660c6ca75d55f843d82554da3d65c1	ELSA-2017-3518	ol7_x86_64_u5_base
	openssl-devel-1.0.2k-12.0.1.el7.x86_64.rpm	fde897d1cd33325d85d85443fcf40eb968660c6ca75d55f843d82554da3d65c1	ELSA-2017-3518	ol7_x86_64_u5_developer
	openssl-libs-1.0.2k-12.0.1.el7.i686.rpm	abe0de60446015ab9ed67d732586b377dfa783b24f62bae273f51ad45b8e1bc6	ELSA-2017-3518	ol7_x86_64_latest
	openssl-libs-1.0.2k-12.0.1.el7.i686.rpm	abe0de60446015ab9ed67d732586b377dfa783b24f62bae273f51ad45b8e1bc6	ELSA-2017-3518	ol7_x86_64_u5_base
	openssl-libs-1.0.2k-12.0.1.el7.i686.rpm	abe0de60446015ab9ed67d732586b377dfa783b24f62bae273f51ad45b8e1bc6	ELSA-2017-3518	ol7_x86_64_u5_developer
	openssl-libs-1.0.2k-12.0.1.el7.x86_64.rpm	a9fe9b034679f2dd72bf0e859f5bf0d0914ef581976ffb97affa2ec98ee058f4	ELSA-2017-3518	exadata_dbserver_19.1.0.0.0_x86_64_base
	openssl-libs-1.0.2k-12.0.1.el7.x86_64.rpm	a9fe9b034679f2dd72bf0e859f5bf0d0914ef581976ffb97affa2ec98ee058f4	ELSA-2017-3518	ol7_x86_64_latest
	openssl-libs-1.0.2k-12.0.1.el7.x86_64.rpm	a9fe9b034679f2dd72bf0e859f5bf0d0914ef581976ffb97affa2ec98ee058f4	ELSA-2017-3518	ol7_x86_64_u5_base
	openssl-libs-1.0.2k-12.0.1.el7.x86_64.rpm	a9fe9b034679f2dd72bf0e859f5bf0d0914ef581976ffb97affa2ec98ee058f4	ELSA-2017-3518	ol7_x86_64_u5_developer
	openssl-perl-1.0.2k-12.0.1.el7.x86_64.rpm	ccdf2830d401e6dc09db9aac2a73817afc5f298518d13fba444b782349abb63c	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-perl-1.0.2k-12.0.1.el7.x86_64.rpm	ccdf2830d401e6dc09db9aac2a73817afc5f298518d13fba444b782349abb63c	ELSA-2017-3518	ol7_x86_64_optional_developer
	openssl-perl-1.0.2k-12.0.1.el7.x86_64.rpm	ccdf2830d401e6dc09db9aac2a73817afc5f298518d13fba444b782349abb63c	ELSA-2017-3518	ol7_x86_64_optional_latest
	openssl-static-1.0.2k-12.0.1.el7.i686.rpm	7dedd78c924650dc4d0f78344d3a494aa80bccc8b4dea0ffd90439d87b2d1aa1	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-static-1.0.2k-12.0.1.el7.i686.rpm	7dedd78c924650dc4d0f78344d3a494aa80bccc8b4dea0ffd90439d87b2d1aa1	ELSA-2017-3518	ol7_x86_64_optional_developer
	openssl-static-1.0.2k-12.0.1.el7.i686.rpm	7dedd78c924650dc4d0f78344d3a494aa80bccc8b4dea0ffd90439d87b2d1aa1	ELSA-2017-3518	ol7_x86_64_optional_latest
	openssl-static-1.0.2k-12.0.1.el7.x86_64.rpm	d7c4c614eb47ece6f16fa12f631c6c269bc4fb223b2d4fc3743dd1710e3d0d87	ELSA-2017-3518	ol7_x86_64_optional_archive
	openssl-static-1.0.2k-12.0.1.el7.x86_64.rpm	d7c4c614eb47ece6f16fa12f631c6c269bc4fb223b2d4fc3743dd1710e3d0d87	ELSA-2017-3518	ol7_x86_64_optional_developer
	openssl-static-1.0.2k-12.0.1.el7.x86_64.rpm	d7c4c614eb47ece6f16fa12f631c6c269bc4fb223b2d4fc3743dd1710e3d0d87	ELSA-2017-3518	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691