Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Fedora Core 3: FEDORA-2005-390 Critical OpenSSL Cache Leak Fix

fedora
Calendar Grey May 23, 2005
Dist Fedora Esm H88
The latest enhancement for the OpenSSL toolkit in Fedora Core 3 tackles potential security vulnerabilities and promotes strengthened data transmission reliability.
Updated package.

Summary

The OpenSSL toolkit provides support for secure communications between

machines. OpenSSL includes a certificate management tool and shared

libraries which provide various cryptographic algorithms and

protocols.

- fix CAN-2005-0109 - use constant time/memory access mod_exp

so bits of private key aren't leaked by cache eviction (#157631)

31b47a1f18a93aac78cac3335ce65a45 SRPMS/openssl096b-0.9.6b-21.1.src.rpm

bd9087075a84be9cf54081964ec252a5 x86_64/openssl096b-0.9.6b-21.1.x86_64.rpm

129c7aca5b7a1dc4d2967694431154e8 x86_64/debug/openssl096b-debuginfo-0.9.6b-21.1.x86_64.rpm

3f2cd72cdafbc687d60766dd48548468 x86_64/openssl096b-0.9.6b-21.1.i386.rpm

3f2cd72cdafbc687d60766dd48548468 i386/openssl096b-0.9.6b-21.1.i386.rpm

7309ad51bb086ecbd1c95e021b8171a9 i386/debug/openssl096b-debuginfo-0.9.6b-21.1.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

fedora-announce-list@redhat.com

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Name: openssl096b
Version: 0.9.6b
Release: 21.1
Summary: The OpenSSL toolkit.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here