Skip to navigation

Security Advisory openssl security update

Advisory: RHSA-2005:476-08
Type: Security Advisory
Severity: Moderate
Issued on: 2005-06-01
Last updated on: 2005-06-01
Affected Products: Red Hat Desktop (v. 3)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Enterprise Linux WS (v. 4)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
CVEs (cve.mitre.org): CVE-2004-0975
CVE-2005-0109

Details

Updated OpenSSL packages that fix security issues are now available.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

OpenSSL is a toolkit that implements Secure Sockets Layer (SSL v2/v3) and
Transport Layer Security (TLS v1) protocols as well as a full-strength
general purpose cryptography library.

Colin Percival reported a cache timing attack that could allow a malicious
local user to gain portions of cryptographic keys. The Common
Vulnerabilities and Exposures project (cve.mitre.org) assigned the name
CAN-2005-0109 to the issue. The OpenSSL library has been patched to add a
new fixed-window mod_exp implementation as default for RSA, DSA, and DH
private-key operations. This patch is designed to mitigate cache timing
and potentially related attacks.

A flaw was found in the way the der_chop script creates temporary files. It
is possible that a malicious local user could cause der_chop to overwrite
files (CAN-2004-0975). The der_chop script was deprecated and has been
removed from these updated packages. Red Hat Enterprise Linux 4 did not
ship der_chop and is therefore not vulnerable to this issue.

Users are advised to update to these erratum packages which contain patches
to correct these issues.

Please note: After installing this update, users are advised to either
restart all services that use OpenSSL or restart their system.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Desktop (v. 3)

SRPMS:
openssl-0.9.7a-33.15.src.rpm
File outdated by:  RHSA-2010:0163
    MD5: fecbb9965efea588bcfc4ccbd72768fd
openssl096b-0.9.6b-16.22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: 46629205793cb96e5cc327b8b179051f
 
IA-32:
openssl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 2b9f1aa02444b77b229d5879b1726a86
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-devel-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 6208a674e905b110d72973e0adaf6cf3
openssl-perl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 3ad6a8e8713e716a6229e95a43b890a1
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
 
x86_64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 14aa11421e2f27ebe03b961ddc067a89
openssl-devel-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 69146c5d0a1e0b1b42a1446ad5f28d65
openssl-perl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 9643ce541a386847bf188db74e0ce92e
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 497fcbbdf8d777529bbb0f0b9967d179
 
Red Hat Desktop (v. 4)

SRPMS:
openssl-0.9.7a-43.2.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 632bcfec21c365a0b85a9ede55eb5cf1
openssl096b-0.9.6b-22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: d4d515e7811eb994384a7591fdba9e7f
 
IA-32:
openssl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 487ce4c45ebf66926274b1253a848cd4
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-devel-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8978b9729c1a20fd03e983114b130dd0
openssl-perl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 3ca9137b86397258d518bdc259ac4b78
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
 
x86_64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: a08f4a829f55b9410d392c660139a087
openssl-devel-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: d788d0abc3990f22ee2a879f64c0f79f
openssl-perl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 272c1d08b3f644e66165bd2aeb39798a
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 8200d3810815f04044a4660c6cd326f6
 
Red Hat Enterprise Linux AS (v. 2.1)

SRPMS:
openssl-0.9.6b-39.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 2202dc14a7399f6ff8fcd41fc94e8dca
openssl095a-0.9.5a-25.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 102f28d06aea7cf3bb34a56cd5da0090
openssl096-0.9.6-25.8.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 8bafb6187e44ed15d98bd74c0b5cad84
 
IA-32:
openssl-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: c79dea648676c22fb5a009e1f39e5ea3
openssl-0.9.6b-39.i686.rpm
File outdated by:  RHSA-2009:0004
    MD5: 56186ba8a320a509946b9d692f55f3cd
openssl-devel-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: 381085275ca47b015e00cb6d8623ecc5
openssl-perl-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: f91c8281f03b68b7b5ebdfb487890405
openssl095a-0.9.5a-25.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: 653b775edf3a0a9349f6fb35027c6143
openssl096-0.9.6-25.8.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: 10964869b19af694a5d0514cb36fa205
 
IA-64:
openssl-0.9.6b-39.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: f3cb5aa3d4e294ae79fd2330011b5f08
openssl-devel-0.9.6b-39.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 2b9344fb71bb4dee0685dd14e07f9274
openssl-perl-0.9.6b-39.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 7167fd4a10d412dcb565f58debb67ac4
openssl095a-0.9.5a-25.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 935dbc0ded3197d15a7fa5f0dfe373e4
openssl096-0.9.6-25.8.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 7bf31fe46f5eaccb2388b2cda4253cb9
 
Red Hat Enterprise Linux AS (v. 3)

SRPMS:
openssl-0.9.7a-33.15.src.rpm
File outdated by:  RHSA-2010:0163
    MD5: fecbb9965efea588bcfc4ccbd72768fd
openssl096b-0.9.6b-16.22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: 46629205793cb96e5cc327b8b179051f
 
IA-32:
openssl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 2b9f1aa02444b77b229d5879b1726a86
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-devel-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 6208a674e905b110d72973e0adaf6cf3
openssl-perl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 3ad6a8e8713e716a6229e95a43b890a1
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
 
IA-64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: ec72eec3236de964420dc9e38ae8d71a
openssl-devel-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: b266014efab5aa58e0fd83b0959d54df
openssl-perl-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 459eeb342e024e624d6268ed4e9eec9d
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.ia64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 94b2856c1e42167fca7391daec2a8227
 
PPC:
openssl-0.9.7a-33.15.ppc.rpm
File outdated by:  RHSA-2010:0163
    MD5: 44e5f6bf71e3981f7844e85b29d530df
openssl-0.9.7a-33.15.ppc64.rpm
File outdated by:  RHSA-2010:0163
    MD5: ecdfa92368a84e089d900f0a629a1170
openssl-devel-0.9.7a-33.15.ppc.rpm
File outdated by:  RHSA-2010:0163
    MD5: 2ca81b2af2ba7375c77b1170df585520
openssl-perl-0.9.7a-33.15.ppc.rpm
File outdated by:  RHSA-2010:0163
    MD5: 7c6ab2cf3daff6a488b064366026b2ef
openssl096b-0.9.6b-16.22.3.ppc.rpm
File outdated by:  RHSA-2010:0173
    MD5: 162f4749b30290556231124094cd2bad
 
s390:
openssl-0.9.7a-33.15.s390.rpm
File outdated by:  RHSA-2010:0163
    MD5: cea7e0a81d9c7e905c44a66ef0aac7bc
openssl-devel-0.9.7a-33.15.s390.rpm
File outdated by:  RHSA-2010:0163
    MD5: 51266bee2ab9d83a40da1ff623b3637c
openssl-perl-0.9.7a-33.15.s390.rpm
File outdated by:  RHSA-2010:0163
    MD5: 3d4c371a3424bcfeff87341706eed0cc
openssl096b-0.9.6b-16.22.3.s390.rpm
File outdated by:  RHSA-2010:0173
    MD5: f1e853444cd2e99374ca8a70a552437d
 
s390x:
openssl-0.9.7a-33.15.s390.rpm
File outdated by:  RHSA-2010:0163
    MD5: cea7e0a81d9c7e905c44a66ef0aac7bc
openssl-0.9.7a-33.15.s390x.rpm
File outdated by:  RHSA-2010:0163
    MD5: 63bc66c55d18699ad8acfbf1730d02be
openssl-devel-0.9.7a-33.15.s390x.rpm
File outdated by:  RHSA-2010:0163
    MD5: 43ee653eba3bcd8281231a3124e1d635
openssl-perl-0.9.7a-33.15.s390x.rpm
File outdated by:  RHSA-2010:0163
    MD5: c422bb5d666389ef0cf101ff327f304e
openssl096b-0.9.6b-16.22.3.s390.rpm
File outdated by:  RHSA-2010:0173
    MD5: f1e853444cd2e99374ca8a70a552437d
 
x86_64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 14aa11421e2f27ebe03b961ddc067a89
openssl-devel-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 69146c5d0a1e0b1b42a1446ad5f28d65
openssl-perl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 9643ce541a386847bf188db74e0ce92e
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 497fcbbdf8d777529bbb0f0b9967d179
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
openssl-0.9.7a-43.2.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 632bcfec21c365a0b85a9ede55eb5cf1
openssl096b-0.9.6b-22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: d4d515e7811eb994384a7591fdba9e7f
 
IA-32:
openssl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 487ce4c45ebf66926274b1253a848cd4
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-devel-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8978b9729c1a20fd03e983114b130dd0
openssl-perl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 3ca9137b86397258d518bdc259ac4b78
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
 
IA-64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 2982807a86a9014fc24244313fa94eab
openssl-devel-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 70bd62608e952f884fd5a28d19bd96a7
openssl-perl-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: c7a9c09ff8873c7a64186f928b14baad
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.ia64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 9dd474ab5fd73f0a83a9b0d1953f5794
 
PPC:
openssl-0.9.7a-43.2.ppc.rpm
File outdated by:  RHSA-2012:0086
    MD5: c8c471cb2bd9b2792b34d2af3892bd4c
openssl-0.9.7a-43.2.ppc64.rpm
File outdated by:  RHSA-2012:0086
    MD5: a08ad5a5c884cd358de86f47da1825b0
openssl-devel-0.9.7a-43.2.ppc.rpm
File outdated by:  RHSA-2012:0086
    MD5: 146d7e707e729f2d7df6554623e311b4
openssl-perl-0.9.7a-43.2.ppc.rpm
File outdated by:  RHSA-2012:0086
    MD5: 9da94be3f0733cf0937ec83a74ddefaf
openssl096b-0.9.6b-22.3.ppc.rpm
File outdated by:  RHSA-2010:0173
    MD5: 3b95181c557862605da524b478f95895
 
s390:
openssl-0.9.7a-43.2.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: 88f84e9a7d2ec9d52e1bf61ca46efbe2
openssl-devel-0.9.7a-43.2.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: 6abebec07c747455150652f0657386d4
openssl-perl-0.9.7a-43.2.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: 410612c59b990ee7031654a4bc3d5be2
openssl096b-0.9.6b-22.3.s390.rpm
File outdated by:  RHSA-2010:0173
    MD5: 7c1d10a24e9f4a3443ade30b09560f44
 
s390x:
openssl-0.9.7a-43.2.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: 88f84e9a7d2ec9d52e1bf61ca46efbe2
openssl-0.9.7a-43.2.s390x.rpm
File outdated by:  RHSA-2012:0086
    MD5: 7112d8f2afc723f566f92685338daa0e
openssl-devel-0.9.7a-43.2.s390x.rpm
File outdated by:  RHSA-2012:0086
    MD5: fd8089721740fced840cb16c1e13aa9a
openssl-perl-0.9.7a-43.2.s390x.rpm
File outdated by:  RHSA-2012:0086
    MD5: 967c2c22cfc0549e768fb24760a83561
openssl096b-0.9.6b-22.3.s390.rpm
File outdated by:  RHSA-2010:0173
    MD5: 7c1d10a24e9f4a3443ade30b09560f44
 
x86_64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: a08f4a829f55b9410d392c660139a087
openssl-devel-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: d788d0abc3990f22ee2a879f64c0f79f
openssl-perl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 272c1d08b3f644e66165bd2aeb39798a
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 8200d3810815f04044a4660c6cd326f6
 
Red Hat Enterprise Linux ES (v. 2.1)

SRPMS:
openssl-0.9.6b-39.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 2202dc14a7399f6ff8fcd41fc94e8dca
 
IA-32:
openssl-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: c79dea648676c22fb5a009e1f39e5ea3
openssl-0.9.6b-39.i686.rpm
File outdated by:  RHSA-2009:0004
    MD5: 56186ba8a320a509946b9d692f55f3cd
openssl-devel-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: 381085275ca47b015e00cb6d8623ecc5
openssl-perl-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: f91c8281f03b68b7b5ebdfb487890405
 
Red Hat Enterprise Linux ES (v. 3)

SRPMS:
openssl-0.9.7a-33.15.src.rpm
File outdated by:  RHSA-2010:0163
    MD5: fecbb9965efea588bcfc4ccbd72768fd
openssl096b-0.9.6b-16.22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: 46629205793cb96e5cc327b8b179051f
 
IA-32:
openssl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 2b9f1aa02444b77b229d5879b1726a86
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-devel-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 6208a674e905b110d72973e0adaf6cf3
openssl-perl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 3ad6a8e8713e716a6229e95a43b890a1
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
 
IA-64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: ec72eec3236de964420dc9e38ae8d71a
openssl-devel-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: b266014efab5aa58e0fd83b0959d54df
openssl-perl-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 459eeb342e024e624d6268ed4e9eec9d
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.ia64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 94b2856c1e42167fca7391daec2a8227
 
x86_64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 14aa11421e2f27ebe03b961ddc067a89
openssl-devel-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 69146c5d0a1e0b1b42a1446ad5f28d65
openssl-perl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 9643ce541a386847bf188db74e0ce92e
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 497fcbbdf8d777529bbb0f0b9967d179
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
openssl-0.9.7a-43.2.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 632bcfec21c365a0b85a9ede55eb5cf1
openssl096b-0.9.6b-22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: d4d515e7811eb994384a7591fdba9e7f
 
IA-32:
openssl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 487ce4c45ebf66926274b1253a848cd4
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-devel-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8978b9729c1a20fd03e983114b130dd0
openssl-perl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 3ca9137b86397258d518bdc259ac4b78
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
 
IA-64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 2982807a86a9014fc24244313fa94eab
openssl-devel-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 70bd62608e952f884fd5a28d19bd96a7
openssl-perl-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: c7a9c09ff8873c7a64186f928b14baad
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.ia64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 9dd474ab5fd73f0a83a9b0d1953f5794
 
x86_64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: a08f4a829f55b9410d392c660139a087
openssl-devel-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: d788d0abc3990f22ee2a879f64c0f79f
openssl-perl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 272c1d08b3f644e66165bd2aeb39798a
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 8200d3810815f04044a4660c6cd326f6
 
Red Hat Enterprise Linux WS (v. 2.1)

SRPMS:
openssl-0.9.6b-39.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 2202dc14a7399f6ff8fcd41fc94e8dca
 
IA-32:
openssl-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: c79dea648676c22fb5a009e1f39e5ea3
openssl-0.9.6b-39.i686.rpm
File outdated by:  RHSA-2009:0004
    MD5: 56186ba8a320a509946b9d692f55f3cd
openssl-devel-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: 381085275ca47b015e00cb6d8623ecc5
openssl-perl-0.9.6b-39.i386.rpm
File outdated by:  RHSA-2009:0004
    MD5: f91c8281f03b68b7b5ebdfb487890405
 
Red Hat Enterprise Linux WS (v. 3)

SRPMS:
openssl-0.9.7a-33.15.src.rpm
File outdated by:  RHSA-2010:0163
    MD5: fecbb9965efea588bcfc4ccbd72768fd
openssl096b-0.9.6b-16.22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: 46629205793cb96e5cc327b8b179051f
 
IA-32:
openssl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 2b9f1aa02444b77b229d5879b1726a86
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-devel-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 6208a674e905b110d72973e0adaf6cf3
openssl-perl-0.9.7a-33.15.i386.rpm
File outdated by:  RHSA-2010:0163
    MD5: 3ad6a8e8713e716a6229e95a43b890a1
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
 
IA-64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: ec72eec3236de964420dc9e38ae8d71a
openssl-devel-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: b266014efab5aa58e0fd83b0959d54df
openssl-perl-0.9.7a-33.15.ia64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 459eeb342e024e624d6268ed4e9eec9d
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.ia64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 94b2856c1e42167fca7391daec2a8227
 
x86_64:
openssl-0.9.7a-33.15.i686.rpm
File outdated by:  RHSA-2010:0163
    MD5: 885db73998e10cb54b063e1a70accbb4
openssl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 14aa11421e2f27ebe03b961ddc067a89
openssl-devel-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 69146c5d0a1e0b1b42a1446ad5f28d65
openssl-perl-0.9.7a-33.15.x86_64.rpm
File outdated by:  RHSA-2010:0163
    MD5: 9643ce541a386847bf188db74e0ce92e
openssl096b-0.9.6b-16.22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: 597de32a07318098040a8a7b307b426c
openssl096b-0.9.6b-16.22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 497fcbbdf8d777529bbb0f0b9967d179
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
openssl-0.9.7a-43.2.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 632bcfec21c365a0b85a9ede55eb5cf1
openssl096b-0.9.6b-22.3.src.rpm
File outdated by:  RHSA-2010:0173
    MD5: d4d515e7811eb994384a7591fdba9e7f
 
IA-32:
openssl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 487ce4c45ebf66926274b1253a848cd4
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-devel-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8978b9729c1a20fd03e983114b130dd0
openssl-perl-0.9.7a-43.2.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 3ca9137b86397258d518bdc259ac4b78
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
 
IA-64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 2982807a86a9014fc24244313fa94eab
openssl-devel-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 70bd62608e952f884fd5a28d19bd96a7
openssl-perl-0.9.7a-43.2.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: c7a9c09ff8873c7a64186f928b14baad
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.ia64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 9dd474ab5fd73f0a83a9b0d1953f5794
 
x86_64:
openssl-0.9.7a-43.2.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 984d989808f91d1cc99643aebc3feddd
openssl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: a08f4a829f55b9410d392c660139a087
openssl-devel-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: d788d0abc3990f22ee2a879f64c0f79f
openssl-perl-0.9.7a-43.2.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 272c1d08b3f644e66165bd2aeb39798a
openssl096b-0.9.6b-22.3.i386.rpm
File outdated by:  RHSA-2010:0173
    MD5: b6b2e4312f617df65e64c3ef900808eb
openssl096b-0.9.6b-22.3.x86_64.rpm
File outdated by:  RHSA-2010:0173
    MD5: 8200d3810815f04044a4660c6cd326f6
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor

SRPMS:
openssl-0.9.6b-39.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 2202dc14a7399f6ff8fcd41fc94e8dca
openssl095a-0.9.5a-25.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 102f28d06aea7cf3bb34a56cd5da0090
openssl096-0.9.6-25.8.src.rpm
File outdated by:  RHSA-2009:0004
    MD5: 8bafb6187e44ed15d98bd74c0b5cad84
 
IA-64:
openssl-0.9.6b-39.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: f3cb5aa3d4e294ae79fd2330011b5f08
openssl-devel-0.9.6b-39.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 2b9344fb71bb4dee0685dd14e07f9274
openssl-perl-0.9.6b-39.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 7167fd4a10d412dcb565f58debb67ac4
openssl095a-0.9.5a-25.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 935dbc0ded3197d15a7fa5f0dfe373e4
openssl096-0.9.6-25.8.ia64.rpm
File outdated by:  RHSA-2009:0004
    MD5: 7bf31fe46f5eaccb2388b2cda4253cb9
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

136302 - CAN-2004-0975 temporary file vulnerabilities in der_chop script
140061 - CAN-2004-0975 temporary file vulnerabilities in der_chop script
157631 - CAN-2005-0109 timing attack on OpenSSL with HT


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/