OVMSA-2016-0031 - openssl security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2016-03-01 |
Description
[1.0.1e-42.4]
- fix CVE-2016-0702 - side channel attack on modular exponentiation
- fix CVE-2016-0705 - double-free in DSA private key parsing
- fix CVE-2016-0797 - heap corruption in BN_hex2bn and BN_dec2bn
[1.0.1e-42.3]
- fix CVE-2015-3197 - SSLv2 ciphersuite enforcement
- disable SSLv2 in the generic TLS method
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.3 (x86_64) | openssl-1.0.1e-42.el6_7.4.src.rpm | ddc8b25c135115580c01e875d56d36bb88f559c3e9e2fd01de014d286118b4e6 | OVMSA-2023-0013 | ovm3_x86_64_3.3_patch |
| openssl-1.0.1e-42.el6_7.4.x86_64.rpm | b65fb20b99aa97f86f2177137471f0939774a7fbee74dd53c43928ece0537e74 | OVMSA-2023-0013 | ovm3_x86_64_3.3_patch |
|
| Oracle VM 3.4 (x86_64) | openssl-1.0.1e-42.el6_7.4.src.rpm | ddc8b25c135115580c01e875d56d36bb88f559c3e9e2fd01de014d286118b4e6 | OVMSA-2023-0013 | ovm34_x86_64_latest |
| openssl-1.0.1e-42.el6_7.4.x86_64.rpm | b65fb20b99aa97f86f2177137471f0939774a7fbee74dd53c43928ece0537e74 | OVMSA-2023-0013 | ovm34_x86_64_latest |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
