ELSA-2019-3700

ULN >
Oracle Linux Errata repository >
ELSA-2019-3700

ELSA-2019-3700 - openssl security, bug fix, and enhancement update

Type:	SECURITY
Impact:	LOW
Release Date:	2019-11-14

Description

[1.1.1c-2]
- do not try to use EC groups disallowed in FIPS mode
in TLS
- fix Valgrind regression with constant-time code

[1.1.1c-1]
- update to the 1.1.1c release

[1.1.1b-6]
- adjust the default cert pbe algorithm for pkcs12 -export
in the FIPS mode

[1.1.1b-5]
- Fix small regressions related to the rebase

[1.1.1b-3]
- FIPS compliance fixes

[1.1.1b-1]
- update to the 1.1.1b release
- EVP_KDF API backport from master
- SSH KDF implementation for EVP_KDF API backport from master
- add S390x chacha20-poly1305 assembler support from master branch

Related CVEs

CVE-2018-0734

CVE-2018-0735

CVE-2019-1543

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1c-2.el8.src.rpm	ea9a0e437416460107b4da0136b9e02722c8138b7666130a8a9cc069e65f3baa	-	ol8_aarch64_baseos_latest
	openssl-1.1.1c-2.el8.aarch64.rpm	60eeabf884df7e75223a16f1b361aacaf128383b1f4a7c613e6caf988dbc5d5f	-	ol8_aarch64_baseos_latest
	openssl-devel-1.1.1c-2.el8.aarch64.rpm	cfdf0328af295d34093a0d08efc54b4b8876539077189c7c31da7e20169d756d	-	ol8_aarch64_baseos_latest
	openssl-libs-1.1.1c-2.el8.aarch64.rpm	9c3ebc8db113ddd3e4e9ea9c617fa731c05e7034ef118b26a1c51731d7e24111	-	ol8_aarch64_baseos_latest
	openssl-perl-1.1.1c-2.el8.aarch64.rpm	0fd5cfcfaf972e4e45fd669d6813c1ab6f325f4aff4b3e421cc353fe9c171bd8	-	ol8_aarch64_baseos_latest

Oracle Linux 8 (x86_64)	openssl-1.1.1c-2.el8.src.rpm	ea9a0e437416460107b4da0136b9e02722c8138b7666130a8a9cc069e65f3baa	-	ol8_x86_64_baseos_latest
	openssl-1.1.1c-2.el8.src.rpm	ea9a0e437416460107b4da0136b9e02722c8138b7666130a8a9cc069e65f3baa	-	ol8_x86_64_u1_baseos_base
	openssl-1.1.1c-2.el8.x86_64.rpm	b22e70c659183514081442f7d0ed28a7f348218493417fb4234863c564e263ed	-	ol8_x86_64_baseos_latest
	openssl-1.1.1c-2.el8.x86_64.rpm	b22e70c659183514081442f7d0ed28a7f348218493417fb4234863c564e263ed	-	ol8_x86_64_u1_baseos_base
	openssl-devel-1.1.1c-2.el8.i686.rpm	e52bea4ae42f2649426f31d0aca15d1037f59c20fa304e64e4c6082fff702030	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1c-2.el8.i686.rpm	e52bea4ae42f2649426f31d0aca15d1037f59c20fa304e64e4c6082fff702030	-	ol8_x86_64_u1_baseos_base
	openssl-devel-1.1.1c-2.el8.x86_64.rpm	babd14664dbd67cd15d2ed28d4c2ee7296a6da4631bf882c0d85929522979ade	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1c-2.el8.x86_64.rpm	babd14664dbd67cd15d2ed28d4c2ee7296a6da4631bf882c0d85929522979ade	-	ol8_x86_64_u1_baseos_base
	openssl-libs-1.1.1c-2.el8.i686.rpm	ec2a041be53db633ac17669a9c79c0e54ccb6d953f24dd5e2cec60e193a3e0b4	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1c-2.el8.i686.rpm	ec2a041be53db633ac17669a9c79c0e54ccb6d953f24dd5e2cec60e193a3e0b4	-	ol8_x86_64_u1_baseos_base
	openssl-libs-1.1.1c-2.el8.x86_64.rpm	6b459d8414de886fe50c50eb0e5628a40518d029bb201636c29b4258e6219bb6	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1c-2.el8.x86_64.rpm	6b459d8414de886fe50c50eb0e5628a40518d029bb201636c29b4258e6219bb6	-	ol8_x86_64_u1_baseos_base
	openssl-perl-1.1.1c-2.el8.x86_64.rpm	872891468c2261dc4d1c03fe7f055e28b6e786ec74e85e141cb7927e1922c314	-	ol8_x86_64_baseos_latest
	openssl-perl-1.1.1c-2.el8.x86_64.rpm	872891468c2261dc4d1c03fe7f055e28b6e786ec74e85e141cb7927e1922c314	-	ol8_x86_64_u1_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691