ELSA-2019-2471

ULN >
Oracle Linux Errata repository >
ELSA-2019-2471

ELSA-2019-2471 - openssl security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2019-08-14

Description

[1.0.1e-58.0.1]
- Oracle bug 28730228: backport CVE-2018-0732
- Oracle bug 28758493: backport CVE-2018-0737
- Merge upstream patch to fix CVE-2018-0739
- Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz
- sha256 is used for the RSA pairwise consistency test instead of sha1

[1.0.1e-58]
- fix CVE-2019-1559 - 0-byte record padding oracle

Related CVEs

CVE-2019-1559

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 6 (i386)	openssl-1.0.1e-58.0.1.el6_10.src.rpm	f56420eec63cfd6bd40d44b37c9a41aa	ELSA-2021-9150
	openssl-1.0.1e-58.0.1.el6_10.i686.rpm	bc5b00f8d40a561f49aa4f82038bc9c9	ELSA-2021-9150
	openssl-devel-1.0.1e-58.0.1.el6_10.i686.rpm	a8937409c434632fcd2872961592a882	ELSA-2021-9150
	openssl-perl-1.0.1e-58.0.1.el6_10.i686.rpm	d9a947c19ff731e8c30993aa43f1c820	ELSA-2021-9150
	openssl-static-1.0.1e-58.0.1.el6_10.i686.rpm	f1aba1dd0d5e7f0a82913f439eeb5289	ELSA-2021-9150

Oracle Linux 6 (x86_64)	openssl-1.0.1e-58.0.1.el6_10.src.rpm	f56420eec63cfd6bd40d44b37c9a41aa	ELSA-2021-9150
	openssl-1.0.1e-58.0.1.el6_10.i686.rpm	bc5b00f8d40a561f49aa4f82038bc9c9	ELSA-2021-9150
	openssl-1.0.1e-58.0.1.el6_10.x86_64.rpm	9c304298ee68e36f757a7ea2655a297a	ELSA-2021-9150
	openssl-devel-1.0.1e-58.0.1.el6_10.i686.rpm	a8937409c434632fcd2872961592a882	ELSA-2021-9150
	openssl-devel-1.0.1e-58.0.1.el6_10.x86_64.rpm	83a4a6f91ea5ead2afbe61430f403515	ELSA-2021-9150
	openssl-perl-1.0.1e-58.0.1.el6_10.x86_64.rpm	5e418b2ce38135b016406cdf5e470854	ELSA-2021-9150
	openssl-static-1.0.1e-58.0.1.el6_10.x86_64.rpm	94f52b3902b253008909b4043fad7027	ELSA-2021-9150

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691