Описание
ELSA-2019-0483: openssl security and bug fix update (MODERATE)
[1.0.2k-16.0.1.el7_6.1]
- Bump release for rebuild.
[1.0.2k-16.1]
- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 - EC signature local timing side-channel key extraction
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
openssl
1.0.2k-16.0.1.el7_6.1
openssl-devel
1.0.2k-16.0.1.el7_6.1
openssl-libs
1.0.2k-16.0.1.el7_6.1
openssl-perl
1.0.2k-16.0.1.el7_6.1
openssl-static
1.0.2k-16.0.1.el7_6.1
Oracle Linux x86_64
openssl
1.0.2k-16.0.1.el7_6.1
openssl-devel
1.0.2k-16.0.1.el7_6.1
openssl-libs
1.0.2k-16.0.1.el7_6.1
openssl-perl
1.0.2k-16.0.1.el7_6.1
openssl-static
1.0.2k-16.0.1.el7_6.1
Связанные CVE
Связанные уязвимости
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.
Simultaneous Multi-threading (SMT) in processors can enable local user ...
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.