Security Advisory Important: openssl security update

Advisory: RHSA-2014:1692-1
Type: Security Advisory
Severity: Important
Issued on: 2014-10-22
Last updated on: 2014-10-22
Affected Products: Red Hat Storage Server 2.1
CVEs ( CVE-2014-3513


Updated openssl packages that contain a backported patch to mitigate the
CVE-2014-3566 issue and fix two security issues are now available for Red
Hat Storage 2.1.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),
Transport Layer Security (TLS), and Datagram Transport Layer Security
(DTLS) protocols, as well as a full-strength, general purpose cryptography

This update adds support for the TLS Fallback Signaling Cipher Suite Value
(TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade
attacks against applications which re-connect using a lower SSL/TLS
protocol version when the initial connection indicating the highest
supported protocol version fails.

This can prevent a forceful downgrade of the communication to SSL 3.0.
The SSL 3.0 protocol was found to be vulnerable to the padding oracle
attack when using block cipher suites in cipher block chaining (CBC) mode.
This issue is identified as CVE-2014-3566, and also known under the alias
POODLE. This SSL 3.0 protocol flaw will not be addressed in a future
update; it is recommended that users configure their applications to
require at least TLS protocol version 1.0 for secure communication.

For additional information about this flaw, see the Knowledgebase article

A memory leak flaw was found in the way OpenSSL parsed the DTLS Secure
Real-time Transport Protocol (SRTP) extension data. A remote attacker could
send multiple specially crafted handshake messages to exhaust all available
memory of an SSL/TLS or DTLS server. (CVE-2014-3513)

A memory leak flaw was found in the way an OpenSSL handled failed session
ticket integrity checks. A remote attacker could exhaust all available
memory of an SSL/TLS or DTLS server by sending a large number of invalid
session tickets to that server. (CVE-2014-3567)

All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to mitigate the CVE-2014-3566 issue and correct
the CVE-2014-3513 and CVE-2014-3567 issues. For the update to take effect,
all services linked to the OpenSSL library (such as httpd and other
SSL-enabled services) must be restarted or the system rebooted.


Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at

Updated packages

Red Hat Storage Server 2.1

File outdated by:  RHSA-2015:0752
    MD5: 6f2ca670674fb48caa0848638f3935fd
SHA-256: b68ae751410bd22b483853f73a1e310b6f3f5dc307a038e7953b46055e3db57d
File outdated by:  RHSA-2015:0752
    MD5: 77288f1243c4bf199fc4b6f744f13c89
SHA-256: 904b7d8367de9f94c1878720e634a226ea3c1f67067af6a939dd05f68e7ab1ac
File outdated by:  RHSA-2015:0752
    MD5: 70bd38e4cdbb698e355c9dbbcd1091f1
SHA-256: be01e3eb8e1cfdc95c91f7d634c6b76a119c3bc1c74e02affccc67f66d518735
File outdated by:  RHSA-2015:0752
    MD5: 5aa28f964c7ae6281e16887edbdcd0c8
SHA-256: dcbbbd1b21733e3e3168897120bfc1674c051c4efe7a621d5c5dece211169207
File outdated by:  RHSA-2015:0752
    MD5: 208235778b4409742d1468053e6d5dd7
SHA-256: f14e04f00a6ac0ee2583094cb42c191016fe93aa628360d71063ad245259e8b3
File outdated by:  RHSA-2015:0752
    MD5: eb5521bb44c64ca8df7fe83effaa601b
SHA-256: 31cbe1c6d6b434cddca35a1c27b707e5b0587c6101d1adf003b3c6f6bb1bb397
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1152789 - CVE-2014-3566 openssl: Padding Oracle On Downgraded Legacy Encryption attack
1152953 - CVE-2014-3513 openssl: SRTP memory leak causes crash when using specially-crafted handshake message
1152961 - CVE-2014-3567 openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:

The Red Hat security contact is More contact details at