- Issued:
- 2008-05-21
- Updated:
- 2008-05-21
RHBA-2008:0339 - Bug Fix Advisory
Synopsis
openssl bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated openssl packages that fix a bug and add an enhancement are now
available.
Description
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a full-strength
general purpose cryptography library.
On multithreaded SSL servers, such as Apache, if client certificates were
not in use, it was possible to resume a session on a different virtual
host, other than the virtual host where the session originated. This could
bypass more restrictive checks that are performed during session
negotiation. In these updated packages, stricter SSL session ID matching
has been added.
As well, the openssl packages have been recompiled with the gcc
"-march=z900" option. This improves performance for applications and
libraries running on IBM System z architectures.
Note: after installing these updated packages, users are advised to either
restart all services that use OpenSSL, or restart their system.
Users of openssl are advised to upgrade to these updated packages, which
resolve this issue and add this enhancement.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188
Affected Products
- Red Hat Enterprise Linux Server 5 x86_64
- Red Hat Enterprise Linux Server 5 ia64
- Red Hat Enterprise Linux Server 5 i386
- Red Hat Enterprise Linux Workstation 5 x86_64
- Red Hat Enterprise Linux Workstation 5 i386
- Red Hat Enterprise Linux Desktop 5 x86_64
- Red Hat Enterprise Linux Desktop 5 i386
- Red Hat Enterprise Linux for IBM z Systems 5 s390x
- Red Hat Enterprise Linux for Power, big endian 5 ppc
- Red Hat Enterprise Linux Server from RHUI 5 x86_64
- Red Hat Enterprise Linux Server from RHUI 5 i386
Fixes
- BZ - 233599 - Stricter SSL session ID matching.
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 5
SRPM | |
---|---|
openssl-0.9.8b-10.el5.src.rpm | SHA-256: 5e2b6fba83f12302bd837c1dba495ecf839ac842ca21da4b869b22e44e3f9683 |
x86_64 | |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-0.9.8b-10.el5.x86_64.rpm | SHA-256: a710b1560f51ab6308a4dde3c2f076594de0dc80b0a9c85561c252be77f13a19 |
openssl-devel-0.9.8b-10.el5.i386.rpm | SHA-256: ea8908d267712bdb35859b2ed8b71380ec535d833810b486795b49fc4447b088 |
openssl-devel-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7a42ceefd7b51c3ccece62b3946d23295ed95c71f7dd93975d5e384d3d43b5c0 |
openssl-perl-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7d8b6f1b4d0af5d276226bed451122b1ba4682b51f92d450888f0be9953338b0 |
ia64 | |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-0.9.8b-10.el5.ia64.rpm | SHA-256: 347731fd5f8c7292509eff1d4ecebc81bd1b7d123290aa88b0e3efa161b93755 |
openssl-devel-0.9.8b-10.el5.ia64.rpm | SHA-256: ecd0e62034ac2dbaed4ddf5702ed74967d50d5f4cab92e64f7fed819f3fb6e12 |
openssl-perl-0.9.8b-10.el5.ia64.rpm | SHA-256: 4c7fbfa56331faa2fd611c6797771ab9370903584d7c39cd6f18ded5e82afded |
i386 | |
openssl-0.9.8b-10.el5.i386.rpm | SHA-256: 4d0d673cf5f485320f4907fbdfed77841fa08b6e988052b17bee8aeded65f9f2 |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-devel-0.9.8b-10.el5.i386.rpm | SHA-256: ea8908d267712bdb35859b2ed8b71380ec535d833810b486795b49fc4447b088 |
openssl-perl-0.9.8b-10.el5.i386.rpm | SHA-256: ab3b3a6f450c1c9ab3bd6526174f4b564d8d974316e3189c800c6056dc0eb931 |
Red Hat Enterprise Linux Workstation 5
SRPM | |
---|---|
openssl-0.9.8b-10.el5.src.rpm | SHA-256: 5e2b6fba83f12302bd837c1dba495ecf839ac842ca21da4b869b22e44e3f9683 |
x86_64 | |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-0.9.8b-10.el5.x86_64.rpm | SHA-256: a710b1560f51ab6308a4dde3c2f076594de0dc80b0a9c85561c252be77f13a19 |
openssl-devel-0.9.8b-10.el5.i386.rpm | SHA-256: ea8908d267712bdb35859b2ed8b71380ec535d833810b486795b49fc4447b088 |
openssl-devel-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7a42ceefd7b51c3ccece62b3946d23295ed95c71f7dd93975d5e384d3d43b5c0 |
openssl-perl-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7d8b6f1b4d0af5d276226bed451122b1ba4682b51f92d450888f0be9953338b0 |
i386 | |
openssl-0.9.8b-10.el5.i386.rpm | SHA-256: 4d0d673cf5f485320f4907fbdfed77841fa08b6e988052b17bee8aeded65f9f2 |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-devel-0.9.8b-10.el5.i386.rpm | SHA-256: ea8908d267712bdb35859b2ed8b71380ec535d833810b486795b49fc4447b088 |
openssl-perl-0.9.8b-10.el5.i386.rpm | SHA-256: ab3b3a6f450c1c9ab3bd6526174f4b564d8d974316e3189c800c6056dc0eb931 |
Red Hat Enterprise Linux Desktop 5
SRPM | |
---|---|
openssl-0.9.8b-10.el5.src.rpm | SHA-256: 5e2b6fba83f12302bd837c1dba495ecf839ac842ca21da4b869b22e44e3f9683 |
x86_64 | |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-0.9.8b-10.el5.x86_64.rpm | SHA-256: a710b1560f51ab6308a4dde3c2f076594de0dc80b0a9c85561c252be77f13a19 |
openssl-perl-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7d8b6f1b4d0af5d276226bed451122b1ba4682b51f92d450888f0be9953338b0 |
i386 | |
openssl-0.9.8b-10.el5.i386.rpm | SHA-256: 4d0d673cf5f485320f4907fbdfed77841fa08b6e988052b17bee8aeded65f9f2 |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-perl-0.9.8b-10.el5.i386.rpm | SHA-256: ab3b3a6f450c1c9ab3bd6526174f4b564d8d974316e3189c800c6056dc0eb931 |
Red Hat Enterprise Linux for IBM z Systems 5
SRPM | |
---|---|
openssl-0.9.8b-10.el5.src.rpm | SHA-256: 5e2b6fba83f12302bd837c1dba495ecf839ac842ca21da4b869b22e44e3f9683 |
s390x | |
openssl-0.9.8b-10.el5.s390.rpm | SHA-256: 0a2e9a98fc21fc3c55bd294b2ddcf00b53021f6628de3cce85339b607e502a5b |
openssl-0.9.8b-10.el5.s390x.rpm | SHA-256: 993467b86c58dce0ca84a3c051320a4636a94b75c39369dfed2c6c602c471a64 |
openssl-devel-0.9.8b-10.el5.s390.rpm | SHA-256: c491fc37c6396f808746911f6b275bf0cfb28eab14cc9d5b1f2939432f28eea2 |
openssl-devel-0.9.8b-10.el5.s390x.rpm | SHA-256: b666d77d2a0425e6b88932cec94e819013b2498b782cff5a3f131d17f574e6cb |
openssl-perl-0.9.8b-10.el5.s390x.rpm | SHA-256: e0124bd3e1608b45b61d4f80a196b14f899de6d10f9533db40a7e26950cc5ba1 |
Red Hat Enterprise Linux for Power, big endian 5
SRPM | |
---|---|
openssl-0.9.8b-10.el5.src.rpm | SHA-256: 5e2b6fba83f12302bd837c1dba495ecf839ac842ca21da4b869b22e44e3f9683 |
ppc | |
openssl-0.9.8b-10.el5.ppc.rpm | SHA-256: 03921c27ceb3c4faf67289a185b43b7739daafe6ee779b5736aaebe211c192b1 |
openssl-0.9.8b-10.el5.ppc64.rpm | SHA-256: 0fb4f112e5f376ff5dcaf1a687251f9fbe213e903ec86be2ca4cf1f700e09659 |
openssl-devel-0.9.8b-10.el5.ppc.rpm | SHA-256: 6dd44e57b658a2e841ad27bdc4c0a6647b3624373705215f6a628bc4d6070d5b |
openssl-devel-0.9.8b-10.el5.ppc64.rpm | SHA-256: a2e3c3077aaf3c7608e1bac5076e3ba4cbc214558318b51a865313da29140094 |
openssl-perl-0.9.8b-10.el5.ppc.rpm | SHA-256: ba02989cfa869b40bb81d7251b26cebde94ccd2eafd0ed5fc7e20dc7d193f64c |
Red Hat Enterprise Linux Server from RHUI 5
SRPM | |
---|---|
openssl-0.9.8b-10.el5.src.rpm | SHA-256: 5e2b6fba83f12302bd837c1dba495ecf839ac842ca21da4b869b22e44e3f9683 |
x86_64 | |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-0.9.8b-10.el5.x86_64.rpm | SHA-256: a710b1560f51ab6308a4dde3c2f076594de0dc80b0a9c85561c252be77f13a19 |
openssl-devel-0.9.8b-10.el5.i386.rpm | SHA-256: ea8908d267712bdb35859b2ed8b71380ec535d833810b486795b49fc4447b088 |
openssl-devel-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7a42ceefd7b51c3ccece62b3946d23295ed95c71f7dd93975d5e384d3d43b5c0 |
openssl-perl-0.9.8b-10.el5.x86_64.rpm | SHA-256: 7d8b6f1b4d0af5d276226bed451122b1ba4682b51f92d450888f0be9953338b0 |
i386 | |
openssl-0.9.8b-10.el5.i386.rpm | SHA-256: 4d0d673cf5f485320f4907fbdfed77841fa08b6e988052b17bee8aeded65f9f2 |
openssl-0.9.8b-10.el5.i686.rpm | SHA-256: 3ce7765320ae0f1fd20d3d7ecc88cac5cfe8d64b31825c7e5f98e3da4daca418 |
openssl-devel-0.9.8b-10.el5.i386.rpm | SHA-256: ea8908d267712bdb35859b2ed8b71380ec535d833810b486795b49fc4447b088 |
openssl-perl-0.9.8b-10.el5.i386.rpm | SHA-256: ab3b3a6f450c1c9ab3bd6526174f4b564d8d974316e3189c800c6056dc0eb931 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.