ELSA-2019-4852

ELSA-2019-4852 - openssl security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2019-11-20

Description

[1.1.1c-2]
- do not try to use EC groups disallowed in FIPS mode
in TLS
- fix Valgrind regression with constant-time code

[1.1.1c-1]
- update to the 1.1.1c release

[1.1.1b-6]
- adjust the default cert pbe algorithm for pkcs12 -export
in the FIPS mode

[1.1.1b-5]
- Fix small regressions related to the rebase

[1.1.1b-3]
- FIPS compliance fixes

[1.1.1b-1]
- update to the 1.1.1b release
- EVP_KDF API backport from master
- SSH KDF implementation for EVP_KDF API backport from master
- add S390x chacha20-poly1305 assembler support from master branch

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (x86_64)	openssl-1.1.1c-2.ksplice1.el8.src.rpm	680b78481410e16eff077fb12994acfdf5d0e711297f2c3e60565bf04c7712ca	-	ol8_x86_64_userspace_ksplice
	openssl-1.1.1c-2.ksplice1.el8.x86_64.rpm	309d7287d2ccf250a8b9a7463e13170d9aeedbda6080caa5501fd3bbe50e0ee6	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1c-2.ksplice1.el8.i686.rpm	432a5ef6a96ff71a03305b49808c0bfdb406f5fe781fcb33b89a0d02a308e1a4	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1c-2.ksplice1.el8.x86_64.rpm	ba5b005f48c01e59fa62836fe6efd202ce2d65efbd353b3e74aa8b3853ce56a9	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1c-2.ksplice1.el8.i686.rpm	405fd55356d5d4977987cdf8eb376a37b36865ed54c6e08e513a9d9634c27364	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1c-2.ksplice1.el8.x86_64.rpm	640788bea8730f0748e089dda81ebf82e386a0bc60f479c793fab142529d23d0	-	ol8_x86_64_userspace_ksplice
	openssl-perl-1.1.1c-2.ksplice1.el8.x86_64.rpm	67fa9dae6c1c9df183e163e5a3b1de79bdb1bb6cafc0106c4fc5efde26956f9d	-	ol8_x86_64_userspace_ksplice

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team