ELSA-2019-0483

ELSA-2019-0483 - openssl security and bug fix update

Type:SECURITY
Severity:MODERATE
Release Date:2019-03-13

Description


[1.0.2k-16.0.1.el7_6.1]
- Bump release for rebuild.

[1.0.2k-16.1]
- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 - EC signature local timing side-channel key extraction


Related CVEs


CVE-2018-5407

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) openssl-1.0.2k-16.0.1.el7_6.1.src.rpmedbb3fef6a2f3d0c356958854e0b7f49-
openssl-1.0.2k-16.0.1.el7_6.1.aarch64.rpm46bb5dd691618e549a83da83734a5943-
openssl-devel-1.0.2k-16.0.1.el7_6.1.aarch64.rpm0f5069eee5f461d64dc908112615d540-
openssl-libs-1.0.2k-16.0.1.el7_6.1.aarch64.rpme870b51dc905f5d1138875c1c2aae5df-
openssl-perl-1.0.2k-16.0.1.el7_6.1.aarch64.rpm353de511710202db2c6ae02ae3ed31d0-
openssl-static-1.0.2k-16.0.1.el7_6.1.aarch64.rpmefbc0f0e210e74676af61100c80849a8-
Oracle Linux 7 (x86_64) openssl-1.0.2k-16.0.1.el7_6.1.src.rpmedbb3fef6a2f3d0c356958854e0b7f49-
openssl-1.0.2k-16.0.1.el7_6.1.x86_64.rpm286d2308c269391612e4086c53aff3d0-
openssl-devel-1.0.2k-16.0.1.el7_6.1.i686.rpmebcbaa16dc932dae2818431e954021b1-
openssl-devel-1.0.2k-16.0.1.el7_6.1.x86_64.rpm95397c665269ea21744608f890275e6f-
openssl-libs-1.0.2k-16.0.1.el7_6.1.i686.rpm5720248808a311aefff9e16257b54623-
openssl-libs-1.0.2k-16.0.1.el7_6.1.x86_64.rpmf5c49186c442c33bd870292ead069468-
openssl-perl-1.0.2k-16.0.1.el7_6.1.x86_64.rpm3a9d79f3f8d84c5d5d75ce4eb952e06e-
openssl-static-1.0.2k-16.0.1.el7_6.1.i686.rpm7a92debcb2682cc336e1098e2e3d41a3-
openssl-static-1.0.2k-16.0.1.el7_6.1.x86_64.rpm8696ca68d4b08066c386a62ebbf2690e-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete