Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Oracle Linux 7: ELSA-2016-0722 Critical: OpenSSL DoS Fixes

oracle
Calendar Grey May 9, 2016
Oracle Linux Logo Esm H88
Oracle Linux 7 enhancements encompass vital security patches for OpenSSH. Information regarding modifications and impacted software packages is outlined accordingly.
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[1.0.1e-51.5] - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVP_EncryptUpdate() - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when reading ASN.1 data from BIO - fix CVE-2016-0799 - memory issues in BIO_printf

SRPMs

https://oss.oracle.com:443/ol7/SRPMS-updates/openssl-1.0.1e-51.el7_2.5.src.rpm

x86_64

openssl-1.0.1e-51.el7_2.5.x86_64.rpm openssl-devel-1.0.1e-51.el7_2.5.i686.rpm openssl-devel-1.0.1e-51.el7_2.5.x86_64.rpm openssl-libs-1.0.1e-51.el7_2.5.i686.rpm openssl-libs-1.0.1e-51.el7_2.5.x86_64.rpm openssl-perl-1.0.1e-51.el7_2.5.x86_64.rpm openssl-static-1.0.1e-51.el7_2.5.i686.rpm openssl-static-1.0.1e-51.el7_2.5.x86_64.rpm

aarch64

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here