- Issued:
- 2007-06-11
- Updated:
- 2007-06-11
RHBA-2007:0447 - Bug Fix Advisory
Synopsis
openssl bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated OpenSSL packages that improve handling of some CA certificates are
now available.
Description
OpenSSL is a toolkit that implements Secure Sockets Layer (SSL v2/v3) and
Transport Layer Security (TLS v1) protocols as well as a full-strength
general purpose cryptography library.
The updated OpenSSL packages fix a problem with verification of
certificates signed by certain CA certificates.
Note: After installing this update, users are advised to either restart all
services that use OpenSSL or restart their system.
Users of openssl should upgrade to these updated packages, which resolve
this issue.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 3 x86_64
- Red Hat Enterprise Linux Server 3 ia64
- Red Hat Enterprise Linux Server 3 i386
- Red Hat Enterprise Linux Workstation 3 x86_64
- Red Hat Enterprise Linux Workstation 3 ia64
- Red Hat Enterprise Linux Workstation 3 i386
- Red Hat Enterprise Linux Desktop 3 x86_64
- Red Hat Enterprise Linux Desktop 3 i386
- Red Hat Enterprise Linux for IBM z Systems 3 s390x
- Red Hat Enterprise Linux for IBM z Systems 3 s390
- Red Hat Enterprise Linux for Power, big endian 3 ppc
Fixes
- BZ - 200880 - openssl-0.9.7a fails to verify a certificate against a CA
CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.