ELSA-2021-9121

ELSA-2021-9121 - openssl bug fix update

Type:SECURITY
Severity:NA
Release Date:2021-04-06

Description


[1.0.2k-21]
- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch

[1.0.2k-20]
- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference

[1.0.2k-19]
- close the RSA decryption 9 lives of Bleichenbacher cat
timing side channel (#1649568)

[1.0.2k-18]
- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)

[1.0.2k-17]
- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
timing side-channel key extraction


Related CVEs


CVE-2020-1971

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) openssl-1.0.2k-21.ksplice1.el7_9.src.rpm29cbc8c07c8a5f54a3072efa0a430ce8-
openssl-1.0.2k-21.ksplice1.el7_9.aarch64.rpm2dff23493baca79cd909d5d1096b988c-
openssl-devel-1.0.2k-21.ksplice1.el7_9.aarch64.rpm15a62c7210fda327899463ecc2481fe9-
openssl-libs-1.0.2k-21.ksplice1.el7_9.aarch64.rpm2de0c42bb10de566d5fc7ac3b5da0927-
openssl-perl-1.0.2k-21.ksplice1.el7_9.aarch64.rpm9c103469fdbedbf379f299171e8b3d8e-
openssl-static-1.0.2k-21.ksplice1.el7_9.aarch64.rpmf11dfedb53bec6642a12bcb1915d1a50-
Oracle Linux 7 (x86_64) openssl-1.0.2k-21.ksplice1.el7_9.src.rpm29cbc8c07c8a5f54a3072efa0a430ce8-
openssl-1.0.2k-21.ksplice1.el7_9.x86_64.rpmfbc0db059832fcd0b2c61c096c909fa1-
openssl-devel-1.0.2k-21.ksplice1.el7_9.i686.rpm8416c0c7928107fa6851079005798594-
openssl-devel-1.0.2k-21.ksplice1.el7_9.x86_64.rpmb468291ce5eb3c5b4b9ff6e791d2355d-
openssl-libs-1.0.2k-21.ksplice1.el7_9.i686.rpmf3344dd1d97685cb96b6d7381d8261b8-
openssl-libs-1.0.2k-21.ksplice1.el7_9.x86_64.rpm3d8a72fe4b7d47c44870c15dbcd5160e-
openssl-perl-1.0.2k-21.ksplice1.el7_9.x86_64.rpm78d8eb2b840639c779d8a2d7c908aee9-
openssl-static-1.0.2k-21.ksplice1.el7_9.i686.rpmb0644804432b8aefb49fdd451604ca43-
openssl-static-1.0.2k-21.ksplice1.el7_9.x86_64.rpm83f050afb3cd348079ba3cfb00caa5cb-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete