OVMSA-2015-0039

ULN >
Oracle Linux Errata repository >
OVMSA-2015-0039

OVMSA-2015-0039 - openssl security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2015-03-24

Description

[1.0.1e-30.7]
- update fix for CVE-2015-0287 to what was released upstream

[1.0.1e-30.6]
- fix CVE-2015-0209 - potential use after free in d2i_ECPrivateKey()
- fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison
- fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
- fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
- fix CVE-2015-0292 - integer underflow in base64 decoder
- fix CVE-2015-0293 - triggerable assert in SSLv2 server

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle VM 3.3 (x86_64)	openssl-1.0.1e-30.el6_6.7.src.rpm	fcd832a76317c11031089cef13c91700	OVMSA-2021-0011
	openssl-1.0.1e-30.el6_6.7.x86_64.rpm	4cbeec8ca61db0c200e71740dd0da931	OVMSA-2021-0011

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691