ELSA-2018-3221

ULN >
Oracle Linux Errata repository >
ELSA-2018-3221

ELSA-2018-3221 - openssl security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2018-11-05

Description

[1.0.2k-16.0.1]
- sha256 is used for the RSA pairwise consistency test instead of sha1

[1.0.2k-16]
- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)

[1.0.2k-14]
- ppc64le is not multilib architecture (#1585004)

[1.0.2k-13]
- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	openssl-1.0.2k-16.0.1.el7.src.rpm	6bb2ac8b687ab669494d3d80ab97629823ad3169018b0d2860f7ea4d60303f39	ELSA-2017-3518	ol7_aarch64_latest
	openssl-1.0.2k-16.0.1.el7.src.rpm	6bb2ac8b687ab669494d3d80ab97629823ad3169018b0d2860f7ea4d60303f39	ELSA-2017-3518	ol7_aarch64_optional_latest
	openssl-1.0.2k-16.0.1.el7.aarch64.rpm	34e4eba51a5f6041c552c3717c15703ec9dffef58bb1f383f57df157d923813a	ELSA-2017-3518	ol7_aarch64_latest
	openssl-devel-1.0.2k-16.0.1.el7.aarch64.rpm	d7dae6954565239b01ee25906ae426ab4b22de0d7a5a49940206816ad759c801	ELSA-2017-3518	ol7_aarch64_latest
	openssl-libs-1.0.2k-16.0.1.el7.aarch64.rpm	8b4ccf407d4ce8ee1dc566bd84db501d170e8ddcd6aa6b279e79b03c5b7e5fe8	ELSA-2017-3518	ol7_aarch64_latest
	openssl-perl-1.0.2k-16.0.1.el7.aarch64.rpm	b86cbe445b1d3d53af614ce716f709bdd709704c561604d14a21c5ee16029779	ELSA-2017-3518	ol7_aarch64_optional_latest
	openssl-static-1.0.2k-16.0.1.el7.aarch64.rpm	c8bdca2dece87df57f6daac11073dbecf0fa863140015848a28cc1b565063af1	ELSA-2017-3518	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	openssl-1.0.2k-16.0.1.el7.src.rpm	6bb2ac8b687ab669494d3d80ab97629823ad3169018b0d2860f7ea4d60303f39	ELSA-2017-3518	ol7_x86_64_latest
	openssl-1.0.2k-16.0.1.el7.src.rpm	6bb2ac8b687ab669494d3d80ab97629823ad3169018b0d2860f7ea4d60303f39	ELSA-2017-3518	ol7_x86_64_optional_latest
	openssl-1.0.2k-16.0.1.el7.src.rpm	6bb2ac8b687ab669494d3d80ab97629823ad3169018b0d2860f7ea4d60303f39	ELSA-2017-3518	ol7_x86_64_u6_base
	openssl-1.0.2k-16.0.1.el7.x86_64.rpm	e203346b63ce243206538bc1331ccb4f8fafacfc5aea9f468966554672f495ed	ELSA-2017-3518	exadata_dbserver_19.1.1.0.0_x86_64_base
	openssl-1.0.2k-16.0.1.el7.x86_64.rpm	e203346b63ce243206538bc1331ccb4f8fafacfc5aea9f468966554672f495ed	ELSA-2017-3518	exadata_dbserver_19.1.2.0.0_x86_64_base
	openssl-1.0.2k-16.0.1.el7.x86_64.rpm	e203346b63ce243206538bc1331ccb4f8fafacfc5aea9f468966554672f495ed	ELSA-2017-3518	exadata_dbserver_19.2.0.0.0_x86_64_base
	openssl-1.0.2k-16.0.1.el7.x86_64.rpm	e203346b63ce243206538bc1331ccb4f8fafacfc5aea9f468966554672f495ed	ELSA-2017-3518	ol7_x86_64_latest
	openssl-1.0.2k-16.0.1.el7.x86_64.rpm	e203346b63ce243206538bc1331ccb4f8fafacfc5aea9f468966554672f495ed	ELSA-2017-3518	ol7_x86_64_u6_base
	openssl-devel-1.0.2k-16.0.1.el7.i686.rpm	9a46adad0e447fa25c5dfa02e1a7a44c8dcf02310343b40de7bd97ae0717509c	ELSA-2017-3518	ol7_x86_64_latest
	openssl-devel-1.0.2k-16.0.1.el7.i686.rpm	9a46adad0e447fa25c5dfa02e1a7a44c8dcf02310343b40de7bd97ae0717509c	ELSA-2017-3518	ol7_x86_64_u6_base
	openssl-devel-1.0.2k-16.0.1.el7.x86_64.rpm	38c7e80338500b37c8651b0b62b54d653479ced76c695a4bf0953faf3ce2080b	ELSA-2017-3518	ol7_x86_64_latest
	openssl-devel-1.0.2k-16.0.1.el7.x86_64.rpm	38c7e80338500b37c8651b0b62b54d653479ced76c695a4bf0953faf3ce2080b	ELSA-2017-3518	ol7_x86_64_u6_base
	openssl-libs-1.0.2k-16.0.1.el7.i686.rpm	205c28c19cbf3c724aa28c29ff346cbc727de3b2a3101dffd896ac4cd2cbfa9f	ELSA-2017-3518	ol7_x86_64_latest
	openssl-libs-1.0.2k-16.0.1.el7.i686.rpm	205c28c19cbf3c724aa28c29ff346cbc727de3b2a3101dffd896ac4cd2cbfa9f	ELSA-2017-3518	ol7_x86_64_u6_base
	openssl-libs-1.0.2k-16.0.1.el7.x86_64.rpm	e04c0e3e93a5cef5a8961775ca6e348c30bc55472830ed83a219ca04aa763f52	ELSA-2017-3518	exadata_dbserver_19.1.1.0.0_x86_64_base
	openssl-libs-1.0.2k-16.0.1.el7.x86_64.rpm	e04c0e3e93a5cef5a8961775ca6e348c30bc55472830ed83a219ca04aa763f52	ELSA-2017-3518	exadata_dbserver_19.1.2.0.0_x86_64_base
	openssl-libs-1.0.2k-16.0.1.el7.x86_64.rpm	e04c0e3e93a5cef5a8961775ca6e348c30bc55472830ed83a219ca04aa763f52	ELSA-2017-3518	exadata_dbserver_19.2.0.0.0_x86_64_base
	openssl-libs-1.0.2k-16.0.1.el7.x86_64.rpm	e04c0e3e93a5cef5a8961775ca6e348c30bc55472830ed83a219ca04aa763f52	ELSA-2017-3518	ol7_x86_64_latest
	openssl-libs-1.0.2k-16.0.1.el7.x86_64.rpm	e04c0e3e93a5cef5a8961775ca6e348c30bc55472830ed83a219ca04aa763f52	ELSA-2017-3518	ol7_x86_64_u6_base
	openssl-perl-1.0.2k-16.0.1.el7.x86_64.rpm	0da7fc4942039e547f4527bb61d90659a93d96609ed926e628fa5a4926f4db6d	ELSA-2017-3518	ol7_x86_64_optional_latest
	openssl-static-1.0.2k-16.0.1.el7.i686.rpm	80309eb4505540c11b1c798d92ef45edb6b3ec5bf0feeab9f257c7221a6d5262	ELSA-2017-3518	ol7_x86_64_optional_latest
	openssl-static-1.0.2k-16.0.1.el7.x86_64.rpm	3ccefb27ada4c974ddbf40952472a652223813744e42792deb8879681c847d34	ELSA-2017-3518	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691