ELSA-2019-4852

ELSA-2019-4852 - openssl security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-11-20

Description


[1.1.1c-2]
- do not try to use EC groups disallowed in FIPS mode
in TLS
- fix Valgrind regression with constant-time code

[1.1.1c-1]
- update to the 1.1.1c release

[1.1.1b-6]
- adjust the default cert pbe algorithm for pkcs12 -export
in the FIPS mode

[1.1.1b-5]
- Fix small regressions related to the rebase

[1.1.1b-3]
- FIPS compliance fixes

[1.1.1b-1]
- update to the 1.1.1b release
- EVP_KDF API backport from master
- SSH KDF implementation for EVP_KDF API backport from master
- add S390x chacha20-poly1305 assembler support from master branch


Related CVEs



Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (x86_64) openssl-1.1.1c-2.ksplice1.el8.src.rpmbddef602419c2a4509d75881f5f2e855-
openssl-1.1.1c-2.ksplice1.el8.x86_64.rpm64208bae01043ed7bda5e43bc3c736d5-
openssl-devel-1.1.1c-2.ksplice1.el8.i686.rpmff47bc6766aedffef63f657a9ab9c267-
openssl-devel-1.1.1c-2.ksplice1.el8.x86_64.rpm90c7fa449362b56c2934b9aa6d55511b-
openssl-libs-1.1.1c-2.ksplice1.el8.i686.rpmefba13061d4760175578f633071cfd6f-
openssl-libs-1.1.1c-2.ksplice1.el8.x86_64.rpm5f8d37f722652606bdfb8af9a5baffcd-
openssl-perl-1.1.1c-2.ksplice1.el8.x86_64.rpmf3e9df8cd5f9ef4aba74616f4cd7f572-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete