ELSA-2015-1197

Опубликовано: 30 июн. 2015

Источник: oracle-oval

Платформа: Oracle Linux 5

Описание

ELSA-2015-1197: openssl security update (MODERATE)

[0.9.8e-36.0.1]

Backport openssl 08-Jan-2015 security fixes (John Haxby) [orabug 20409893]
fix CVE-2014-3570 - Bignum squaring may produce incorrect results
fix CVE-2014-3571 - DTLS segmentation fault in dtls1_get_record
fix CVE-2014-3572 - ECDHE silently downgrades to ECDH [Client]

[0.9.8e-36]

also change the default DH parameters in s_server to 1024 bits

[0.9.8e-35]

fix CVE-2015-1789 - out-of-bounds read in X509_cmp_time
fix CVE-2015-1790 - PKCS7 crash with missing EncryptedContent
fix CVE-2015-4000 - prevent the logjam attack on client - restrict the DH key size to at least 768 bits (limit will be increased in future)

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

openssl

0.9.8e-36.0.1.el5_11

openssl-devel

0.9.8e-36.0.1.el5_11

openssl-perl

0.9.8e-36.0.1.el5_11

Oracle Linux x86_64

openssl

0.9.8e-36.0.1.el5_11

openssl-devel

0.9.8e-36.0.1.el5_11

openssl-perl

0.9.8e-36.0.1.el5_11

Oracle Linux i386

openssl

0.9.8e-36.0.1.el5_11

openssl-devel

0.9.8e-36.0.1.el5_11

openssl-perl

0.9.8e-36.0.1.el5_11

Связанные CVE

CVE-2015-1789

CVE-2015-1790

CVE-2015-4000

Ссылки на источники

Связанные уязвимости

SUSE-SU-2015:1150-1

suse-cvrf

около 10 лет назад

Security update for compat-openssl098

SUSE-SU-2015:1143-1

suse-cvrf

около 10 лет назад

Security update for openssl

SUSE-SU-2015:1183-2

suse-cvrf

около 10 лет назад

Security update for compat-openssl097g

SUSE-SU-2015:0547-1

suse-cvrf

около 10 лет назад

Security update for compat-openssl097g

SUSE-SU-2015:1183-1

suse-cvrf

почти 13 лет назад

Security update for compat-openssl097g