Important: openssl096b security update
| Advisory: | RHSA-2010:0173-2 |
|---|---|
| Type: | Security Advisory |
| Severity: | Important |
| Issued on: | 2010-03-25 |
| Last updated on: | 2010-03-25 |
| Affected Products: | Red Hat Desktop (v. 3) Red Hat Desktop (v. 4) Red Hat Enterprise Linux AS (v. 3) Red Hat Enterprise Linux AS (v. 4) Red Hat Enterprise Linux AS (v. 4.8.z) Red Hat Enterprise Linux ES (v. 3) Red Hat Enterprise Linux ES (v. 4) Red Hat Enterprise Linux ES (v. 4.8.z) Red Hat Enterprise Linux WS (v. 3) Red Hat Enterprise Linux WS (v. 4) |
| CVEs (cve.mitre.org): |
CVE-2009-3245 |
Details
Updated openssl096b packages that fix one security issue are now available
for Red Hat Enterprise Linux 3 and 4.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a
full-strength, general purpose cryptography library.
It was discovered that OpenSSL did not always check the return value of the
bn_wexpand() function. An attacker able to trigger a memory allocation
failure in that function could cause an application using the OpenSSL
library to crash or, possibly, execute arbitrary code. (CVE-2009-3245)
All openssl096b users should upgrade to these updated packages, which
contain a backported patch to resolve this issue. For the update to take
effect, all programs using the openssl096b library must be restarted.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Updated packages
| Red Hat Desktop (v. 3) | |
| SRPMS: | |
| openssl096b-0.9.6b-16.50.src.rpm | MD5: cf83a58c5ee22d9ecd0cbed8a05c40ad SHA-256: 9353dbb8096cc829deb56025c45e34d77f6c45ef43ca05f23dc0d83d2dafac1b |
| IA-32: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| x86_64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.x86_64.rpm | MD5: 3711782258cba4a8a3f732b332c1d28a SHA-256: 5ff9bd52aea2f44ebb8d258ac26f671f9ec7966964e97e9c17db5e9b0850d9b5 |
| Red Hat Desktop (v. 4) | |
| SRPMS: | |
| openssl096b-0.9.6b-22.46.el4_8.1.src.rpm | MD5: 67841e26a39794bda636a942d86544e7 SHA-256: 0988d1f1a290fd0b5d91d47e64a2bef2a3a6261cf113fb521b4f8c6d7d48b9f5 |
| IA-32: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| x86_64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.x86_64.rpm | MD5: d4e135e55e7f35196973a99954c1b560 SHA-256: 88c53de290c4d7616bb4ac668ac924d14670cb3d058fbe13b3036fc5d7661ddb |
| Red Hat Enterprise Linux AS (v. 3) | |
| SRPMS: | |
| openssl096b-0.9.6b-16.50.src.rpm | MD5: cf83a58c5ee22d9ecd0cbed8a05c40ad SHA-256: 9353dbb8096cc829deb56025c45e34d77f6c45ef43ca05f23dc0d83d2dafac1b |
| IA-32: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| IA-64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.ia64.rpm | MD5: cea025a8769382c92d7aa570f91b1728 SHA-256: f7104ac17134db188b4aedacbe4db2d109e8aca84d2869f9c4c60e886ea159b8 |
| PPC: | |
| openssl096b-0.9.6b-16.50.ppc.rpm | MD5: c8a3a9ad62a0ff81615b3cea4890dcca SHA-256: 7d9de977d395a745db95aca941daee23e80c5cc5778ec7e3b2ac352d01a01589 |
| s390: | |
| openssl096b-0.9.6b-16.50.s390.rpm | MD5: 87571335ece9c927b14568910a979fc0 SHA-256: 15c7afad789c1b284ac998672340beaa577b748206abf3f1600042a3ed204ac4 |
| s390x: | |
| openssl096b-0.9.6b-16.50.s390.rpm | MD5: 87571335ece9c927b14568910a979fc0 SHA-256: 15c7afad789c1b284ac998672340beaa577b748206abf3f1600042a3ed204ac4 |
| x86_64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.x86_64.rpm | MD5: 3711782258cba4a8a3f732b332c1d28a SHA-256: 5ff9bd52aea2f44ebb8d258ac26f671f9ec7966964e97e9c17db5e9b0850d9b5 |
| Red Hat Enterprise Linux AS (v. 4) | |
| SRPMS: | |
| openssl096b-0.9.6b-22.46.el4_8.1.src.rpm | MD5: 67841e26a39794bda636a942d86544e7 SHA-256: 0988d1f1a290fd0b5d91d47e64a2bef2a3a6261cf113fb521b4f8c6d7d48b9f5 |
| IA-32: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| IA-64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.ia64.rpm | MD5: ce596feeb4c7ba28ace9b7a53d424f57 SHA-256: 27b3f059af6ea9b91898bc1b8a025a9ab7e4443888edd7bef7322b2d013bee66 |
| PPC: | |
| openssl096b-0.9.6b-22.46.el4_8.1.ppc.rpm | MD5: 0abdf209ba9068bd85b93dcaf0044829 SHA-256: 16bcca8dfd9e791b5b753e5ab0dfdf5fab4463bb0362eed2eb8ae235bfa9629e |
| s390: | |
| openssl096b-0.9.6b-22.46.el4_8.1.s390.rpm | MD5: 579040fdfd9ab260b4528e9be5b25697 SHA-256: b0d1e398871185b7c08b7cec7c26c2da547ebaef9eb2f5fd783b4cfb720cbfb6 |
| s390x: | |
| openssl096b-0.9.6b-22.46.el4_8.1.s390.rpm | MD5: 579040fdfd9ab260b4528e9be5b25697 SHA-256: b0d1e398871185b7c08b7cec7c26c2da547ebaef9eb2f5fd783b4cfb720cbfb6 |
| x86_64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.x86_64.rpm | MD5: d4e135e55e7f35196973a99954c1b560 SHA-256: 88c53de290c4d7616bb4ac668ac924d14670cb3d058fbe13b3036fc5d7661ddb |
| Red Hat Enterprise Linux AS (v. 4.8.z) | |
| SRPMS: | |
| openssl096b-0.9.6b-22.46.el4_8.1.src.rpm | MD5: 67841e26a39794bda636a942d86544e7 SHA-256: 0988d1f1a290fd0b5d91d47e64a2bef2a3a6261cf113fb521b4f8c6d7d48b9f5 |
| IA-32: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| IA-64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.ia64.rpm | MD5: ce596feeb4c7ba28ace9b7a53d424f57 SHA-256: 27b3f059af6ea9b91898bc1b8a025a9ab7e4443888edd7bef7322b2d013bee66 |
| PPC: | |
| openssl096b-0.9.6b-22.46.el4_8.1.ppc.rpm | MD5: 0abdf209ba9068bd85b93dcaf0044829 SHA-256: 16bcca8dfd9e791b5b753e5ab0dfdf5fab4463bb0362eed2eb8ae235bfa9629e |
| s390: | |
| openssl096b-0.9.6b-22.46.el4_8.1.s390.rpm | MD5: 579040fdfd9ab260b4528e9be5b25697 SHA-256: b0d1e398871185b7c08b7cec7c26c2da547ebaef9eb2f5fd783b4cfb720cbfb6 |
| s390x: | |
| openssl096b-0.9.6b-22.46.el4_8.1.s390.rpm | MD5: 579040fdfd9ab260b4528e9be5b25697 SHA-256: b0d1e398871185b7c08b7cec7c26c2da547ebaef9eb2f5fd783b4cfb720cbfb6 |
| x86_64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.x86_64.rpm | MD5: d4e135e55e7f35196973a99954c1b560 SHA-256: 88c53de290c4d7616bb4ac668ac924d14670cb3d058fbe13b3036fc5d7661ddb |
| Red Hat Enterprise Linux ES (v. 3) | |
| SRPMS: | |
| openssl096b-0.9.6b-16.50.src.rpm | MD5: cf83a58c5ee22d9ecd0cbed8a05c40ad SHA-256: 9353dbb8096cc829deb56025c45e34d77f6c45ef43ca05f23dc0d83d2dafac1b |
| IA-32: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| IA-64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.ia64.rpm | MD5: cea025a8769382c92d7aa570f91b1728 SHA-256: f7104ac17134db188b4aedacbe4db2d109e8aca84d2869f9c4c60e886ea159b8 |
| x86_64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.x86_64.rpm | MD5: 3711782258cba4a8a3f732b332c1d28a SHA-256: 5ff9bd52aea2f44ebb8d258ac26f671f9ec7966964e97e9c17db5e9b0850d9b5 |
| Red Hat Enterprise Linux ES (v. 4) | |
| SRPMS: | |
| openssl096b-0.9.6b-22.46.el4_8.1.src.rpm | MD5: 67841e26a39794bda636a942d86544e7 SHA-256: 0988d1f1a290fd0b5d91d47e64a2bef2a3a6261cf113fb521b4f8c6d7d48b9f5 |
| IA-32: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| IA-64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.ia64.rpm | MD5: ce596feeb4c7ba28ace9b7a53d424f57 SHA-256: 27b3f059af6ea9b91898bc1b8a025a9ab7e4443888edd7bef7322b2d013bee66 |
| x86_64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.x86_64.rpm | MD5: d4e135e55e7f35196973a99954c1b560 SHA-256: 88c53de290c4d7616bb4ac668ac924d14670cb3d058fbe13b3036fc5d7661ddb |
| Red Hat Enterprise Linux ES (v. 4.8.z) | |
| SRPMS: | |
| openssl096b-0.9.6b-22.46.el4_8.1.src.rpm | MD5: 67841e26a39794bda636a942d86544e7 SHA-256: 0988d1f1a290fd0b5d91d47e64a2bef2a3a6261cf113fb521b4f8c6d7d48b9f5 |
| IA-32: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| IA-64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.ia64.rpm | MD5: ce596feeb4c7ba28ace9b7a53d424f57 SHA-256: 27b3f059af6ea9b91898bc1b8a025a9ab7e4443888edd7bef7322b2d013bee66 |
| x86_64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.x86_64.rpm | MD5: d4e135e55e7f35196973a99954c1b560 SHA-256: 88c53de290c4d7616bb4ac668ac924d14670cb3d058fbe13b3036fc5d7661ddb |
| Red Hat Enterprise Linux WS (v. 3) | |
| SRPMS: | |
| openssl096b-0.9.6b-16.50.src.rpm | MD5: cf83a58c5ee22d9ecd0cbed8a05c40ad SHA-256: 9353dbb8096cc829deb56025c45e34d77f6c45ef43ca05f23dc0d83d2dafac1b |
| IA-32: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| IA-64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.ia64.rpm | MD5: cea025a8769382c92d7aa570f91b1728 SHA-256: f7104ac17134db188b4aedacbe4db2d109e8aca84d2869f9c4c60e886ea159b8 |
| x86_64: | |
| openssl096b-0.9.6b-16.50.i386.rpm | MD5: f0739a40839a56b921a9f99b226c77c5 SHA-256: 1fce1a38e370d6df4955b6276f21fae1b1ee43e5c4d2b083f7fa8fe9ac34f365 |
| openssl096b-0.9.6b-16.50.x86_64.rpm | MD5: 3711782258cba4a8a3f732b332c1d28a SHA-256: 5ff9bd52aea2f44ebb8d258ac26f671f9ec7966964e97e9c17db5e9b0850d9b5 |
| Red Hat Enterprise Linux WS (v. 4) | |
| SRPMS: | |
| openssl096b-0.9.6b-22.46.el4_8.1.src.rpm | MD5: 67841e26a39794bda636a942d86544e7 SHA-256: 0988d1f1a290fd0b5d91d47e64a2bef2a3a6261cf113fb521b4f8c6d7d48b9f5 |
| IA-32: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| IA-64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.ia64.rpm | MD5: ce596feeb4c7ba28ace9b7a53d424f57 SHA-256: 27b3f059af6ea9b91898bc1b8a025a9ab7e4443888edd7bef7322b2d013bee66 |
| x86_64: | |
| openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm | MD5: 5b45a90c0b4b9a11953d7030952c3443 SHA-256: ef9ada0757f8833c20691faaf684ed808b292ffd95839a5bb65d95592f5f7bd1 |
| openssl096b-0.9.6b-22.46.el4_8.1.x86_64.rpm | MD5: d4e135e55e7f35196973a99954c1b560 SHA-256: 88c53de290c4d7616bb4ac668ac924d14670cb3d058fbe13b3036fc5d7661ddb |
| (The unlinked packages above are only available from the Red Hat Network) | |
Bugs fixed (see bugzilla for more information)
570924 - CVE-2009-3245 openssl: missing bn_wexpand return value checks
References
https://www.redhat.com/security/data/cve/CVE-2009-3245.html
http://www.redhat.com/security/updates/classification/#important
http://kbase.redhat.com/faq/docs/DOC-26039
http://www.redhat.com/security/updates/classification/#important
http://kbase.redhat.com/faq/docs/DOC-26039
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package
The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/
