Stay Connected:

ELSA-2020-1840

ELSA-2020-1840 - openssl security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2020-05-05

Description


[1.1.1c-15]
- add selftest of the RAND_DRBG implementation

[1.1.1c-14]
- fix incorrect error return value from FIPS_selftest_dsa
- S390x: properly restore SIGILL signal handler

[1.1.1c-12]
- additional fix for the edk2 build

[1.1.1c-9]
- disallow use of SHA-1 signatures in TLS in FIPS mode

[1.1.1c-8]
- fix CVE-2019-1547 - side-channel weak encryption vulnerability
- fix CVE-2019-1563 - padding oracle in CMS API
- fix CVE-2019-1549 - ensure fork safety of the DRBG
- fix handling of non-FIPS allowed EC curves in FIPS mode
- fix TLS compliance issues

[1.1.1c-7]
- backported ARM performance fixes from master

[1.1.1c-6]
- backport of S390x ECC CPACF enhancements from master
- FIPS mode: properly disable 1024 bit DSA key generation
- FIPS mode: skip ED25519 and ED448 algorithms in openssl speed
- FIPS mode: allow AES-CCM ciphersuites

[1.1.1c-5]
- make the code suitable for edk2 build

[1.1.1c-4]
- backport of SSKDF from master

[1.1.1c-3]
- backport of KBKDF and KRB5KDF from master


Related CVEs


CVE-2019-1563
CVE-2019-1549
CVE-2019-1547

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) openssl-1.1.1c-15.el8.src.rpm222cf7f6765603b6e26d1e190757b216e8a6b4256a5303e6a7ddb10057b74070-ol8_aarch64_baseos_latest
openssl-1.1.1c-15.el8.src.rpm222cf7f6765603b6e26d1e190757b216e8a6b4256a5303e6a7ddb10057b74070-ol8_aarch64_u2_baseos_base
openssl-1.1.1c-15.el8.aarch64.rpm97b219bff1be4d6a0484d0ad63c268a6b4993f9442351c1dc85c9f3abbc4689f-ol8_aarch64_baseos_latest
openssl-1.1.1c-15.el8.aarch64.rpm97b219bff1be4d6a0484d0ad63c268a6b4993f9442351c1dc85c9f3abbc4689f-ol8_aarch64_u2_baseos_base
openssl-devel-1.1.1c-15.el8.aarch64.rpm8e76f0b51b8b9d5524e009cbefc4aa3def0922483516e29cac6392556d22ea06-ol8_aarch64_baseos_latest
openssl-devel-1.1.1c-15.el8.aarch64.rpm8e76f0b51b8b9d5524e009cbefc4aa3def0922483516e29cac6392556d22ea06-ol8_aarch64_u2_baseos_base
openssl-libs-1.1.1c-15.el8.aarch64.rpm0813bb31741df305cc20f5ce374903db504d8c48429ae87005f11cc89a772d72-ol8_aarch64_baseos_latest
openssl-libs-1.1.1c-15.el8.aarch64.rpm0813bb31741df305cc20f5ce374903db504d8c48429ae87005f11cc89a772d72-ol8_aarch64_u2_baseos_base
openssl-perl-1.1.1c-15.el8.aarch64.rpme5a30cc7e15a0668c9aa403c3ee7a23328b859b03193f3c980d1291bb49c4ebc-ol8_aarch64_baseos_latest
openssl-perl-1.1.1c-15.el8.aarch64.rpme5a30cc7e15a0668c9aa403c3ee7a23328b859b03193f3c980d1291bb49c4ebc-ol8_aarch64_u2_baseos_base
Oracle Linux 8 (x86_64) openssl-1.1.1c-15.el8.src.rpm222cf7f6765603b6e26d1e190757b216e8a6b4256a5303e6a7ddb10057b74070-ol8_x86_64_baseos_latest
openssl-1.1.1c-15.el8.src.rpm222cf7f6765603b6e26d1e190757b216e8a6b4256a5303e6a7ddb10057b74070-ol8_x86_64_u2_baseos_base
openssl-1.1.1c-15.el8.x86_64.rpmc3e46ccd31b332916304ca48cd08156bacca9bd1d903b9abbed55c9fd7268180-ol8_x86_64_baseos_latest
openssl-1.1.1c-15.el8.x86_64.rpmc3e46ccd31b332916304ca48cd08156bacca9bd1d903b9abbed55c9fd7268180-ol8_x86_64_u2_baseos_base
openssl-devel-1.1.1c-15.el8.i686.rpm04fb303f55a623b6c8b6bd30e0d72a35d45d6dcf2f2d2f125e20ef151b193243-ol8_x86_64_baseos_latest
openssl-devel-1.1.1c-15.el8.i686.rpm04fb303f55a623b6c8b6bd30e0d72a35d45d6dcf2f2d2f125e20ef151b193243-ol8_x86_64_u2_baseos_base
openssl-devel-1.1.1c-15.el8.x86_64.rpma8f73434f29fd18f1c5c99d7cc4083684ee594e54516416c3743dfef8ea01a9c-ol8_x86_64_baseos_latest
openssl-devel-1.1.1c-15.el8.x86_64.rpma8f73434f29fd18f1c5c99d7cc4083684ee594e54516416c3743dfef8ea01a9c-ol8_x86_64_u2_baseos_base
openssl-libs-1.1.1c-15.el8.i686.rpmaeff0ae2099efc316facbc68d0740d2f05c25c169e07a55bb3dae9c38be9d120-ol8_x86_64_baseos_latest
openssl-libs-1.1.1c-15.el8.i686.rpmaeff0ae2099efc316facbc68d0740d2f05c25c169e07a55bb3dae9c38be9d120-ol8_x86_64_u2_baseos_base
openssl-libs-1.1.1c-15.el8.x86_64.rpm045e609551eabc23ac5749c6b4aa93313b4e656c2bacd7627e382d30df9ca68b-ol8_x86_64_baseos_latest
openssl-libs-1.1.1c-15.el8.x86_64.rpm045e609551eabc23ac5749c6b4aa93313b4e656c2bacd7627e382d30df9ca68b-ol8_x86_64_u2_baseos_base
openssl-perl-1.1.1c-15.el8.x86_64.rpm3fddd1d84f919de003aacd21b0bb4bfbf6117d05c900dc1e34b972ef08bf460d-ol8_x86_64_baseos_latest
openssl-perl-1.1.1c-15.el8.x86_64.rpm3fddd1d84f919de003aacd21b0bb4bfbf6117d05c900dc1e34b972ef08bf460d-ol8_x86_64_u2_baseos_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights