Skip to navigation

Security Advisory Moderate: openssl security update

Advisory: RHSA-2010:0977-1
Type: Security Advisory
Severity: Moderate
Issued on: 2010-12-13
Last updated on: 2010-12-13
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.8.z)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.8.z)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2008-7270
CVE-2009-3245
CVE-2010-4180

Details

Updated openssl packages that fix three security issues are now available
for Red Hat Enterprise Linux 4.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a
full-strength, general purpose cryptography library.

A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code.
A remote attacker could possibly use this flaw to change the ciphersuite
associated with a cached session stored on the server, if the server
enabled the SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG option, possibly
forcing the client to use a weaker ciphersuite after resuming the session.
(CVE-2010-4180, CVE-2008-7270)

Note: With this update, setting the SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
option has no effect and this bug workaround can no longer be enabled.

It was discovered that OpenSSL did not always check the return value of the
bn_wexpand() function. An attacker able to trigger a memory allocation
failure in that function could possibly crash an application using the
OpenSSL library and its UBSEC hardware engine support. (CVE-2009-3245)

All OpenSSL users should upgrade to these updated packages, which contain
backported patches to resolve these issues. For the update to take effect,
all services linked to the OpenSSL library must be restarted, or the system
rebooted.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Desktop (v. 4)

SRPMS:
openssl-0.9.7a-43.17.el4_8.6.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 51a902dee72cf38b98b15c1e0a6d5fff
SHA-256: 9254cdd1594f755b141af4f54e701646b5732a29632bc0739e02344113c0602d
 
IA-32:
openssl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 48ed8e65b1384907d1328406acada328
SHA-256: 05687abeeaf7165cf7e450d521cde85a4abf6d795917875dfd9cef06a04e3644
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-perl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 6363cc8bad671a18a63c0780dae480fe
SHA-256: 1b75c578e72ebae27553880c60ab65e018eb00d63db38aaf665a71bb0c9dc446
 
x86_64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: da81aeaf84cb5214705dfc52d099f9d2
SHA-256: 9adec96b6dcbf3e97a7cdbb6249626d162cccf82c50998ccfb1f16be3e4ceb25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-devel-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 01e2faf66e93d43b021472014cdde61d
SHA-256: ef829535efbc82db45aaf8903ec7de429eb81af6901ac7f60d93cee692697d24
openssl-perl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 707c91ea0b8194bd33b7335ca90be6c3
SHA-256: 0deb8299ba1455c7ed0a1612ab304fc50b373b218d2d290577600d58a15c0bdb
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
openssl-0.9.7a-43.17.el4_8.6.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 51a902dee72cf38b98b15c1e0a6d5fff
SHA-256: 9254cdd1594f755b141af4f54e701646b5732a29632bc0739e02344113c0602d
 
IA-32:
openssl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 48ed8e65b1384907d1328406acada328
SHA-256: 05687abeeaf7165cf7e450d521cde85a4abf6d795917875dfd9cef06a04e3644
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-perl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 6363cc8bad671a18a63c0780dae480fe
SHA-256: 1b75c578e72ebae27553880c60ab65e018eb00d63db38aaf665a71bb0c9dc446
 
IA-64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 2069982eb53b0138eb6a354492b142fd
SHA-256: 21d16c37ff52dd0961eeec75ccab5adb013bfcec50466d79ee205babb2aeb187
openssl-devel-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: ad50c7fab0f2e38a6a8fd8cab17b2de3
SHA-256: 737c96c0a33174eba433fa8d297289ef3f81cf762cf46f3230e084b84a113729
openssl-perl-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 06313379b98b70c4008482e9712892a1
SHA-256: 5b159c3d68389d46fb718c6ce3a1dd512f5357566550b030cc85be752f69718b
 
PPC:
openssl-0.9.7a-43.17.el4_8.6.ppc.rpm
File outdated by:  RHSA-2012:0086
    MD5: 4e77357a52a3553f20031e3e4558e14a
SHA-256: 5361c8677c83406c97a45f6069f51827836c9d5a8827f1c15c8f0a8ad9ddc267
openssl-0.9.7a-43.17.el4_8.6.ppc64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 5fdcd4122f089c006fca0f677e6bcf73
SHA-256: b826b9d9680f5ef31b996f51d86c7b184ad1860ed925967d9b9a7e4edeb17cc0
openssl-devel-0.9.7a-43.17.el4_8.6.ppc.rpm
File outdated by:  RHSA-2012:0086
    MD5: 21d4e3f0ac93413d2ca8701e22201849
SHA-256: 1702b1b8cffd7ecb1b6dd6ef7e1bd18b1b211f578c74004c566cbd7d85101fde
openssl-devel-0.9.7a-43.17.el4_8.6.ppc64.rpm
File outdated by:  RHSA-2012:0086
    MD5: a0ae1ce27278ae37d479950ee534c365
SHA-256: 3898dc8bcf9ef0e6484d10f3caf0c3cb1d74fb9c39c896b7b99d2fb368ad608c
openssl-perl-0.9.7a-43.17.el4_8.6.ppc.rpm
File outdated by:  RHSA-2012:0086
    MD5: 22e23ec160db444c839ff231211f0364
SHA-256: 8a52817cf54ce4831f3bfc073e8fdb372ad190c530c0e6d75bb67ae838881bcc
 
s390:
openssl-0.9.7a-43.17.el4_8.6.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: aa460ceff13d37e4788d544120d59cae
SHA-256: 51a7a637ebb744237c98c9ba77382e4207680d337f11f8d20986eba13d6b6999
openssl-devel-0.9.7a-43.17.el4_8.6.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: a6b9d9e9fca8b3d9bef7eb47a05b91ae
SHA-256: 1702b5328471cb0fee65b3f07006e098df7962a92a1e28ec72fc0245029ff47e
openssl-perl-0.9.7a-43.17.el4_8.6.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: 06eeee60fb500ba878217c68200daeda
SHA-256: 63d799c873e156744dc7d6acad2154d67fae14b8d46ea7df7848c03fe39661a6
 
s390x:
openssl-0.9.7a-43.17.el4_8.6.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: aa460ceff13d37e4788d544120d59cae
SHA-256: 51a7a637ebb744237c98c9ba77382e4207680d337f11f8d20986eba13d6b6999
openssl-0.9.7a-43.17.el4_8.6.s390x.rpm
File outdated by:  RHSA-2012:0086
    MD5: a6436ca7bad1f0e08f91d760d8302c16
SHA-256: 7d1193a50346ce9243707d84fcdd95f7e0866c2ad0b73efc3b529b6d6ca3caad
openssl-devel-0.9.7a-43.17.el4_8.6.s390.rpm
File outdated by:  RHSA-2012:0086
    MD5: a6b9d9e9fca8b3d9bef7eb47a05b91ae
SHA-256: 1702b5328471cb0fee65b3f07006e098df7962a92a1e28ec72fc0245029ff47e
openssl-devel-0.9.7a-43.17.el4_8.6.s390x.rpm
File outdated by:  RHSA-2012:0086
    MD5: 42996459c8e1914ba4e7e4f15457acbd
SHA-256: e6a3cce8c4a0c4c31ce3a72a466824c4ee6b298937d0231268ecbb41ae69ce33
openssl-perl-0.9.7a-43.17.el4_8.6.s390x.rpm
File outdated by:  RHSA-2012:0086
    MD5: 3f1b31bdbdef9f152a05d1c7c6a8c4d1
SHA-256: d139c01094fca27454871a4da0d9684eedbb1ff6acfcbcead43f5429018ba303
 
x86_64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: da81aeaf84cb5214705dfc52d099f9d2
SHA-256: 9adec96b6dcbf3e97a7cdbb6249626d162cccf82c50998ccfb1f16be3e4ceb25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-devel-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 01e2faf66e93d43b021472014cdde61d
SHA-256: ef829535efbc82db45aaf8903ec7de429eb81af6901ac7f60d93cee692697d24
openssl-perl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 707c91ea0b8194bd33b7335ca90be6c3
SHA-256: 0deb8299ba1455c7ed0a1612ab304fc50b373b218d2d290577600d58a15c0bdb
 
Red Hat Enterprise Linux AS (v. 4.8.z)

SRPMS:
openssl-0.9.7a-43.17.el4_8.6.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 51a902dee72cf38b98b15c1e0a6d5fff
SHA-256: 9254cdd1594f755b141af4f54e701646b5732a29632bc0739e02344113c0602d
 
IA-32:
openssl-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 48ed8e65b1384907d1328406acada328
SHA-256: 05687abeeaf7165cf7e450d521cde85a4abf6d795917875dfd9cef06a04e3644
openssl-0.9.7a-43.17.el4_8.6.i686.rpm     MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-perl-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 6363cc8bad671a18a63c0780dae480fe
SHA-256: 1b75c578e72ebae27553880c60ab65e018eb00d63db38aaf665a71bb0c9dc446
 
IA-64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm     MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.ia64.rpm     MD5: 2069982eb53b0138eb6a354492b142fd
SHA-256: 21d16c37ff52dd0961eeec75ccab5adb013bfcec50466d79ee205babb2aeb187
openssl-devel-0.9.7a-43.17.el4_8.6.ia64.rpm     MD5: ad50c7fab0f2e38a6a8fd8cab17b2de3
SHA-256: 737c96c0a33174eba433fa8d297289ef3f81cf762cf46f3230e084b84a113729
openssl-perl-0.9.7a-43.17.el4_8.6.ia64.rpm     MD5: 06313379b98b70c4008482e9712892a1
SHA-256: 5b159c3d68389d46fb718c6ce3a1dd512f5357566550b030cc85be752f69718b
 
PPC:
openssl-0.9.7a-43.17.el4_8.6.ppc.rpm     MD5: 4e77357a52a3553f20031e3e4558e14a
SHA-256: 5361c8677c83406c97a45f6069f51827836c9d5a8827f1c15c8f0a8ad9ddc267
openssl-0.9.7a-43.17.el4_8.6.ppc64.rpm     MD5: 5fdcd4122f089c006fca0f677e6bcf73
SHA-256: b826b9d9680f5ef31b996f51d86c7b184ad1860ed925967d9b9a7e4edeb17cc0
openssl-devel-0.9.7a-43.17.el4_8.6.ppc.rpm     MD5: 21d4e3f0ac93413d2ca8701e22201849
SHA-256: 1702b1b8cffd7ecb1b6dd6ef7e1bd18b1b211f578c74004c566cbd7d85101fde
openssl-devel-0.9.7a-43.17.el4_8.6.ppc64.rpm     MD5: a0ae1ce27278ae37d479950ee534c365
SHA-256: 3898dc8bcf9ef0e6484d10f3caf0c3cb1d74fb9c39c896b7b99d2fb368ad608c
openssl-perl-0.9.7a-43.17.el4_8.6.ppc.rpm     MD5: 22e23ec160db444c839ff231211f0364
SHA-256: 8a52817cf54ce4831f3bfc073e8fdb372ad190c530c0e6d75bb67ae838881bcc
 
s390:
openssl-0.9.7a-43.17.el4_8.6.s390.rpm     MD5: aa460ceff13d37e4788d544120d59cae
SHA-256: 51a7a637ebb744237c98c9ba77382e4207680d337f11f8d20986eba13d6b6999
openssl-devel-0.9.7a-43.17.el4_8.6.s390.rpm     MD5: a6b9d9e9fca8b3d9bef7eb47a05b91ae
SHA-256: 1702b5328471cb0fee65b3f07006e098df7962a92a1e28ec72fc0245029ff47e
openssl-perl-0.9.7a-43.17.el4_8.6.s390.rpm     MD5: 06eeee60fb500ba878217c68200daeda
SHA-256: 63d799c873e156744dc7d6acad2154d67fae14b8d46ea7df7848c03fe39661a6
 
s390x:
openssl-0.9.7a-43.17.el4_8.6.s390.rpm     MD5: aa460ceff13d37e4788d544120d59cae
SHA-256: 51a7a637ebb744237c98c9ba77382e4207680d337f11f8d20986eba13d6b6999
openssl-0.9.7a-43.17.el4_8.6.s390x.rpm     MD5: a6436ca7bad1f0e08f91d760d8302c16
SHA-256: 7d1193a50346ce9243707d84fcdd95f7e0866c2ad0b73efc3b529b6d6ca3caad
openssl-devel-0.9.7a-43.17.el4_8.6.s390.rpm     MD5: a6b9d9e9fca8b3d9bef7eb47a05b91ae
SHA-256: 1702b5328471cb0fee65b3f07006e098df7962a92a1e28ec72fc0245029ff47e
openssl-devel-0.9.7a-43.17.el4_8.6.s390x.rpm     MD5: 42996459c8e1914ba4e7e4f15457acbd
SHA-256: e6a3cce8c4a0c4c31ce3a72a466824c4ee6b298937d0231268ecbb41ae69ce33
openssl-perl-0.9.7a-43.17.el4_8.6.s390x.rpm     MD5: 3f1b31bdbdef9f152a05d1c7c6a8c4d1
SHA-256: d139c01094fca27454871a4da0d9684eedbb1ff6acfcbcead43f5429018ba303
 
x86_64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm     MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.x86_64.rpm     MD5: da81aeaf84cb5214705dfc52d099f9d2
SHA-256: 9adec96b6dcbf3e97a7cdbb6249626d162cccf82c50998ccfb1f16be3e4ceb25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-devel-0.9.7a-43.17.el4_8.6.x86_64.rpm     MD5: 01e2faf66e93d43b021472014cdde61d
SHA-256: ef829535efbc82db45aaf8903ec7de429eb81af6901ac7f60d93cee692697d24
openssl-perl-0.9.7a-43.17.el4_8.6.x86_64.rpm     MD5: 707c91ea0b8194bd33b7335ca90be6c3
SHA-256: 0deb8299ba1455c7ed0a1612ab304fc50b373b218d2d290577600d58a15c0bdb
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
openssl-0.9.7a-43.17.el4_8.6.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 51a902dee72cf38b98b15c1e0a6d5fff
SHA-256: 9254cdd1594f755b141af4f54e701646b5732a29632bc0739e02344113c0602d
 
IA-32:
openssl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 48ed8e65b1384907d1328406acada328
SHA-256: 05687abeeaf7165cf7e450d521cde85a4abf6d795917875dfd9cef06a04e3644
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-perl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 6363cc8bad671a18a63c0780dae480fe
SHA-256: 1b75c578e72ebae27553880c60ab65e018eb00d63db38aaf665a71bb0c9dc446
 
IA-64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 2069982eb53b0138eb6a354492b142fd
SHA-256: 21d16c37ff52dd0961eeec75ccab5adb013bfcec50466d79ee205babb2aeb187
openssl-devel-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: ad50c7fab0f2e38a6a8fd8cab17b2de3
SHA-256: 737c96c0a33174eba433fa8d297289ef3f81cf762cf46f3230e084b84a113729
openssl-perl-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 06313379b98b70c4008482e9712892a1
SHA-256: 5b159c3d68389d46fb718c6ce3a1dd512f5357566550b030cc85be752f69718b
 
x86_64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: da81aeaf84cb5214705dfc52d099f9d2
SHA-256: 9adec96b6dcbf3e97a7cdbb6249626d162cccf82c50998ccfb1f16be3e4ceb25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-devel-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 01e2faf66e93d43b021472014cdde61d
SHA-256: ef829535efbc82db45aaf8903ec7de429eb81af6901ac7f60d93cee692697d24
openssl-perl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 707c91ea0b8194bd33b7335ca90be6c3
SHA-256: 0deb8299ba1455c7ed0a1612ab304fc50b373b218d2d290577600d58a15c0bdb
 
Red Hat Enterprise Linux ES (v. 4.8.z)

SRPMS:
openssl-0.9.7a-43.17.el4_8.6.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 51a902dee72cf38b98b15c1e0a6d5fff
SHA-256: 9254cdd1594f755b141af4f54e701646b5732a29632bc0739e02344113c0602d
 
IA-32:
openssl-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 48ed8e65b1384907d1328406acada328
SHA-256: 05687abeeaf7165cf7e450d521cde85a4abf6d795917875dfd9cef06a04e3644
openssl-0.9.7a-43.17.el4_8.6.i686.rpm     MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-perl-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 6363cc8bad671a18a63c0780dae480fe
SHA-256: 1b75c578e72ebae27553880c60ab65e018eb00d63db38aaf665a71bb0c9dc446
 
IA-64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm     MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.ia64.rpm     MD5: 2069982eb53b0138eb6a354492b142fd
SHA-256: 21d16c37ff52dd0961eeec75ccab5adb013bfcec50466d79ee205babb2aeb187
openssl-devel-0.9.7a-43.17.el4_8.6.ia64.rpm     MD5: ad50c7fab0f2e38a6a8fd8cab17b2de3
SHA-256: 737c96c0a33174eba433fa8d297289ef3f81cf762cf46f3230e084b84a113729
openssl-perl-0.9.7a-43.17.el4_8.6.ia64.rpm     MD5: 06313379b98b70c4008482e9712892a1
SHA-256: 5b159c3d68389d46fb718c6ce3a1dd512f5357566550b030cc85be752f69718b
 
x86_64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm     MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.x86_64.rpm     MD5: da81aeaf84cb5214705dfc52d099f9d2
SHA-256: 9adec96b6dcbf3e97a7cdbb6249626d162cccf82c50998ccfb1f16be3e4ceb25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm     MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-devel-0.9.7a-43.17.el4_8.6.x86_64.rpm     MD5: 01e2faf66e93d43b021472014cdde61d
SHA-256: ef829535efbc82db45aaf8903ec7de429eb81af6901ac7f60d93cee692697d24
openssl-perl-0.9.7a-43.17.el4_8.6.x86_64.rpm     MD5: 707c91ea0b8194bd33b7335ca90be6c3
SHA-256: 0deb8299ba1455c7ed0a1612ab304fc50b373b218d2d290577600d58a15c0bdb
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
openssl-0.9.7a-43.17.el4_8.6.src.rpm
File outdated by:  RHSA-2012:0086
    MD5: 51a902dee72cf38b98b15c1e0a6d5fff
SHA-256: 9254cdd1594f755b141af4f54e701646b5732a29632bc0739e02344113c0602d
 
IA-32:
openssl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 48ed8e65b1384907d1328406acada328
SHA-256: 05687abeeaf7165cf7e450d521cde85a4abf6d795917875dfd9cef06a04e3644
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-perl-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 6363cc8bad671a18a63c0780dae480fe
SHA-256: 1b75c578e72ebae27553880c60ab65e018eb00d63db38aaf665a71bb0c9dc446
 
IA-64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 2069982eb53b0138eb6a354492b142fd
SHA-256: 21d16c37ff52dd0961eeec75ccab5adb013bfcec50466d79ee205babb2aeb187
openssl-devel-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: ad50c7fab0f2e38a6a8fd8cab17b2de3
SHA-256: 737c96c0a33174eba433fa8d297289ef3f81cf762cf46f3230e084b84a113729
openssl-perl-0.9.7a-43.17.el4_8.6.ia64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 06313379b98b70c4008482e9712892a1
SHA-256: 5b159c3d68389d46fb718c6ce3a1dd512f5357566550b030cc85be752f69718b
 
x86_64:
openssl-0.9.7a-43.17.el4_8.6.i686.rpm
File outdated by:  RHSA-2012:0086
    MD5: 8ef13da40f61a93f87fa70fe422d35d9
SHA-256: fb18e80263dc9fa46e8ca6e4b549b4f345c2926d660181e41252a358a903ec25
openssl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: da81aeaf84cb5214705dfc52d099f9d2
SHA-256: 9adec96b6dcbf3e97a7cdbb6249626d162cccf82c50998ccfb1f16be3e4ceb25
openssl-devel-0.9.7a-43.17.el4_8.6.i386.rpm
File outdated by:  RHSA-2012:0086
    MD5: 354d55aaf37aebea82c68303e86f0a78
SHA-256: 8509e4d517898b8d4aa7c97593b01ad2524f9073ce6b9942877c1b35fc2035c0
openssl-devel-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 01e2faf66e93d43b021472014cdde61d
SHA-256: ef829535efbc82db45aaf8903ec7de429eb81af6901ac7f60d93cee692697d24
openssl-perl-0.9.7a-43.17.el4_8.6.x86_64.rpm
File outdated by:  RHSA-2012:0086
    MD5: 707c91ea0b8194bd33b7335ca90be6c3
SHA-256: 0deb8299ba1455c7ed0a1612ab304fc50b373b218d2d290577600d58a15c0bdb
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

570924 - CVE-2009-3245 openssl: missing bn_wexpand return value checks
659462 - CVE-2010-4180 openssl: NETSCAPE_REUSE_CIPHER_CHANGE_BUG ciphersuite downgrade attack
660650 - CVE-2008-7270 openssl: NETSCAPE_REUSE_CIPHER_CHANGE_BUG downgrade-to-disabled ciphersuite attack


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/