Skip to navigation

Security Advisory Important: openssl security update

Advisory: RHSA-2014:0015-3
Type: Security Advisory
Severity: Important
Issued on: 2014-01-08
Last updated on: 2014-01-08
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2013-4353
CVE-2013-6449
CVE-2013-6450

Details

Updated openssl packages that fix three security issues are now available
for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a
full-strength, general purpose cryptography library.

A flaw was found in the way OpenSSL determined which hashing algorithm to
use when TLS protocol version 1.2 was enabled. This could possibly cause
OpenSSL to use an incorrect hashing algorithm, leading to a crash of an
application using the library. (CVE-2013-6449)

It was discovered that the Datagram Transport Layer Security (DTLS)
protocol implementation in OpenSSL did not properly maintain encryption and
digest contexts during renegotiation. A lost or discarded renegotiation
handshake packet could cause a DTLS client or server using OpenSSL to
crash. (CVE-2013-6450)

A NULL pointer dereference flaw was found in the way OpenSSL handled
TLS/SSL protocol handshake packets. A specially crafted handshake packet
could cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)

All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library must be restarted, or
the system rebooted.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
openssl-1.0.1e-16.el6_5.4.src.rpm
File outdated by:  RHSA-2014:0376
    MD5: 1176d700e0f0a7a77628c83fe380e069
SHA-256: 72b869b44e62ec539a56a9597470bb6c4c7cd7f54cfd6bed5cd3072e76057147
 
IA-32:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-perl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 6d1aa56dd9aacb74d6194bcdcdb0b5ba
SHA-256: 94d80e256673178f384ce70e0f1e9e77f96f57b878c44f7fd83579472f506420
openssl-static-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: cbb0612f4ca08079fea3c25f8057553c
SHA-256: a0a18045c9ee25e919ad20e9f2da796d1f9350c89277dc99234f084057ff7a6f
 
x86_64:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 3dbbe69a8b5db0ba7158ff840e9ab959
SHA-256: ab000dc7154406fcc4d6943c4e55bfedc1713a0b344d629a1570354a9f594926
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-debuginfo-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: fdb27fc651d3ed65743ee46250eda543
SHA-256: a0b3c5254e6f71f7b212789bcbf5dff42b960e41ce1dec4a525ef1b42cc47cd1
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-devel-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: c4819222453a9e854010087fac11352b
SHA-256: 1dee73bfee388dd6431dcb7bafb6c0b580df893bf0be964f25c708d1f7ed3391
openssl-perl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: e8542335125dced22db9b83ed910a01a
SHA-256: bf3e90241fabb8df1beec7779b9dfecfb2a20bb20865a394806dc9fe68eca5a6
openssl-static-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 520f651912d372ce01d0b2ab4cc79a78
SHA-256: eb72df8577777e79ed563a1fbee58928e31c5ea7317458ac11d4250fb0837293
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
openssl-1.0.1e-16.el6_5.4.src.rpm
File outdated by:  RHSA-2014:0376
    MD5: 1176d700e0f0a7a77628c83fe380e069
SHA-256: 72b869b44e62ec539a56a9597470bb6c4c7cd7f54cfd6bed5cd3072e76057147
 
x86_64:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 3dbbe69a8b5db0ba7158ff840e9ab959
SHA-256: ab000dc7154406fcc4d6943c4e55bfedc1713a0b344d629a1570354a9f594926
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-debuginfo-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: fdb27fc651d3ed65743ee46250eda543
SHA-256: a0b3c5254e6f71f7b212789bcbf5dff42b960e41ce1dec4a525ef1b42cc47cd1
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-devel-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: c4819222453a9e854010087fac11352b
SHA-256: 1dee73bfee388dd6431dcb7bafb6c0b580df893bf0be964f25c708d1f7ed3391
openssl-perl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: e8542335125dced22db9b83ed910a01a
SHA-256: bf3e90241fabb8df1beec7779b9dfecfb2a20bb20865a394806dc9fe68eca5a6
openssl-static-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 520f651912d372ce01d0b2ab4cc79a78
SHA-256: eb72df8577777e79ed563a1fbee58928e31c5ea7317458ac11d4250fb0837293
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
openssl-1.0.1e-16.el6_5.4.src.rpm
File outdated by:  RHSA-2014:0376
    MD5: 1176d700e0f0a7a77628c83fe380e069
SHA-256: 72b869b44e62ec539a56a9597470bb6c4c7cd7f54cfd6bed5cd3072e76057147
 
IA-32:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-perl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 6d1aa56dd9aacb74d6194bcdcdb0b5ba
SHA-256: 94d80e256673178f384ce70e0f1e9e77f96f57b878c44f7fd83579472f506420
openssl-static-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: cbb0612f4ca08079fea3c25f8057553c
SHA-256: a0a18045c9ee25e919ad20e9f2da796d1f9350c89277dc99234f084057ff7a6f
 
PPC:
openssl-1.0.1e-16.el6_5.4.ppc.rpm
File outdated by:  RHSA-2014:0376
    MD5: b33a4ac116e2000e0e86bc49a77ad35f
SHA-256: d956faf0135764827baa50511d08822feceae25cd44d9014bad534eedd4239a3
openssl-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 240e60aaebdd1c94573b2b4d78e5d480
SHA-256: a4eed9c0c006874b3276f34ecfbb626541659be69025c04db2d274e085f667ba
openssl-debuginfo-1.0.1e-16.el6_5.4.ppc.rpm
File outdated by:  RHSA-2014:0376
    MD5: a5ff7982675dc9b2ea571dff8f0d2c01
SHA-256: 22993f8a033d24e62b7c7b4c948f85f8d906b1459de5e64837fa7cf8aab2c79b
openssl-debuginfo-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 8a48eba1f1553a1153b60054fbfafde6
SHA-256: ea65aafb880d877a21d3d3835de492336c19a0f90aad8abdb132b8811e47102c
openssl-devel-1.0.1e-16.el6_5.4.ppc.rpm
File outdated by:  RHSA-2014:0376
    MD5: ee2b483daf65c2123700caa4869a7366
SHA-256: fc40fd819428c3095b744a5db435be2530bfe47ac7b41fcc4a47bc6dafd57ac5
openssl-devel-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 60db3c624d442196823ec79a8fffd965
SHA-256: b6e17bd15d970d9144893a9848e783c2bd1a5175cd886f4f7fa4ae058ca54e02
openssl-perl-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: bd43e08f33aabb1c7bc9da8100f82fe1
SHA-256: 8e89717ddb9f808618cd0d7980be33bb1ddda7557d2d3a6d03e70d56e694f865
openssl-static-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: f94b4af60291a4bcc66d85ea0532b650
SHA-256: 5db7bf9ca6c60f5fb20172f96f77a748c2a88a0f5db635a91d235c20be7dda66
 
s390x:
openssl-1.0.1e-16.el6_5.4.s390.rpm
File outdated by:  RHSA-2014:0376
    MD5: 6e39f8e75b90579648f5e41cadca6c03
SHA-256: 7bcd64a7176349bf86594f4329df0158b9359f6118d42f4ca5fd86faf46cd05d
openssl-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: 0be80f2531d2d269ecfb47be96c8f9ad
SHA-256: dca91c5b2bebab95e1c72e5cd18322f5398b1f4c312809f2974e094ff4218f14
openssl-debuginfo-1.0.1e-16.el6_5.4.s390.rpm
File outdated by:  RHSA-2014:0376
    MD5: 7c6c60a14db40f0b5b0c12f897b83c47
SHA-256: 74e5cbc7b11dda6a37e2af2fcb9cda5a53d470bc4f56f57826c58ec467bf8c4a
openssl-debuginfo-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: deecb7c42e7caba0f0b5ae6794fae002
SHA-256: 6f71bf7afd6cd0c03ac806807ba2bb2f62ef1c20ad4b4a4b772b4da6654c92c5
openssl-devel-1.0.1e-16.el6_5.4.s390.rpm
File outdated by:  RHSA-2014:0376
    MD5: 994c858cc773150440ce681c6166e1b8
SHA-256: 3946de98db4fe7169cb09308c591920f5bae5c379c16c4a6469b89370ba52ffe
openssl-devel-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: 513dc18b5d50e37299e15f4c9f521e58
SHA-256: 0e3b0f0dc70539050deba554b30f1bf09c955948a275126e6b67118471a31315
openssl-perl-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: 355d33fd5274b1b1666eb9f2b1b321f3
SHA-256: 5d6a26dd2ab3fcded4a1180cae5b9c8531d3b3df75af4fdd42c1465e4ec5f3fb
openssl-static-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: b203d9d9521a97c4b6f3b1b72f955612
SHA-256: 4ee6759084bcc0448ef6b5c3aa0483a40ad8d1bac2b89d8d54724100bff61b44
 
x86_64:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 3dbbe69a8b5db0ba7158ff840e9ab959
SHA-256: ab000dc7154406fcc4d6943c4e55bfedc1713a0b344d629a1570354a9f594926
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-debuginfo-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: fdb27fc651d3ed65743ee46250eda543
SHA-256: a0b3c5254e6f71f7b212789bcbf5dff42b960e41ce1dec4a525ef1b42cc47cd1
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-devel-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: c4819222453a9e854010087fac11352b
SHA-256: 1dee73bfee388dd6431dcb7bafb6c0b580df893bf0be964f25c708d1f7ed3391
openssl-perl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: e8542335125dced22db9b83ed910a01a
SHA-256: bf3e90241fabb8df1beec7779b9dfecfb2a20bb20865a394806dc9fe68eca5a6
openssl-static-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 520f651912d372ce01d0b2ab4cc79a78
SHA-256: eb72df8577777e79ed563a1fbee58928e31c5ea7317458ac11d4250fb0837293
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
openssl-1.0.1e-16.el6_5.4.src.rpm
File outdated by:  RHSA-2014:0376
    MD5: 1176d700e0f0a7a77628c83fe380e069
SHA-256: 72b869b44e62ec539a56a9597470bb6c4c7cd7f54cfd6bed5cd3072e76057147
 
x86_64:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 3dbbe69a8b5db0ba7158ff840e9ab959
SHA-256: ab000dc7154406fcc4d6943c4e55bfedc1713a0b344d629a1570354a9f594926
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-debuginfo-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: fdb27fc651d3ed65743ee46250eda543
SHA-256: a0b3c5254e6f71f7b212789bcbf5dff42b960e41ce1dec4a525ef1b42cc47cd1
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-devel-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: c4819222453a9e854010087fac11352b
SHA-256: 1dee73bfee388dd6431dcb7bafb6c0b580df893bf0be964f25c708d1f7ed3391
openssl-perl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: e8542335125dced22db9b83ed910a01a
SHA-256: bf3e90241fabb8df1beec7779b9dfecfb2a20bb20865a394806dc9fe68eca5a6
openssl-static-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 520f651912d372ce01d0b2ab4cc79a78
SHA-256: eb72df8577777e79ed563a1fbee58928e31c5ea7317458ac11d4250fb0837293
 
Red Hat Enterprise Linux Server EUS (v. 6.5.z)

SRPMS:
openssl-1.0.1e-16.el6_5.4.src.rpm
File outdated by:  RHSA-2014:0376
    MD5: 1176d700e0f0a7a77628c83fe380e069
SHA-256: 72b869b44e62ec539a56a9597470bb6c4c7cd7f54cfd6bed5cd3072e76057147
 
IA-32:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-perl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 6d1aa56dd9aacb74d6194bcdcdb0b5ba
SHA-256: 94d80e256673178f384ce70e0f1e9e77f96f57b878c44f7fd83579472f506420
openssl-static-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: cbb0612f4ca08079fea3c25f8057553c
SHA-256: a0a18045c9ee25e919ad20e9f2da796d1f9350c89277dc99234f084057ff7a6f
 
PPC:
openssl-1.0.1e-16.el6_5.4.ppc.rpm
File outdated by:  RHSA-2014:0376
    MD5: b33a4ac116e2000e0e86bc49a77ad35f
SHA-256: d956faf0135764827baa50511d08822feceae25cd44d9014bad534eedd4239a3
openssl-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 240e60aaebdd1c94573b2b4d78e5d480
SHA-256: a4eed9c0c006874b3276f34ecfbb626541659be69025c04db2d274e085f667ba
openssl-debuginfo-1.0.1e-16.el6_5.4.ppc.rpm
File outdated by:  RHSA-2014:0376
    MD5: a5ff7982675dc9b2ea571dff8f0d2c01
SHA-256: 22993f8a033d24e62b7c7b4c948f85f8d906b1459de5e64837fa7cf8aab2c79b
openssl-debuginfo-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 8a48eba1f1553a1153b60054fbfafde6
SHA-256: ea65aafb880d877a21d3d3835de492336c19a0f90aad8abdb132b8811e47102c
openssl-devel-1.0.1e-16.el6_5.4.ppc.rpm
File outdated by:  RHSA-2014:0376
    MD5: ee2b483daf65c2123700caa4869a7366
SHA-256: fc40fd819428c3095b744a5db435be2530bfe47ac7b41fcc4a47bc6dafd57ac5
openssl-devel-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 60db3c624d442196823ec79a8fffd965
SHA-256: b6e17bd15d970d9144893a9848e783c2bd1a5175cd886f4f7fa4ae058ca54e02
openssl-perl-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: bd43e08f33aabb1c7bc9da8100f82fe1
SHA-256: 8e89717ddb9f808618cd0d7980be33bb1ddda7557d2d3a6d03e70d56e694f865
openssl-static-1.0.1e-16.el6_5.4.ppc64.rpm
File outdated by:  RHSA-2014:0376
    MD5: f94b4af60291a4bcc66d85ea0532b650
SHA-256: 5db7bf9ca6c60f5fb20172f96f77a748c2a88a0f5db635a91d235c20be7dda66
 
s390x:
openssl-1.0.1e-16.el6_5.4.s390.rpm
File outdated by:  RHSA-2014:0376
    MD5: 6e39f8e75b90579648f5e41cadca6c03
SHA-256: 7bcd64a7176349bf86594f4329df0158b9359f6118d42f4ca5fd86faf46cd05d
openssl-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: 0be80f2531d2d269ecfb47be96c8f9ad
SHA-256: dca91c5b2bebab95e1c72e5cd18322f5398b1f4c312809f2974e094ff4218f14
openssl-debuginfo-1.0.1e-16.el6_5.4.s390.rpm
File outdated by:  RHSA-2014:0376
    MD5: 7c6c60a14db40f0b5b0c12f897b83c47
SHA-256: 74e5cbc7b11dda6a37e2af2fcb9cda5a53d470bc4f56f57826c58ec467bf8c4a
openssl-debuginfo-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: deecb7c42e7caba0f0b5ae6794fae002
SHA-256: 6f71bf7afd6cd0c03ac806807ba2bb2f62ef1c20ad4b4a4b772b4da6654c92c5
openssl-devel-1.0.1e-16.el6_5.4.s390.rpm
File outdated by:  RHSA-2014:0376
    MD5: 994c858cc773150440ce681c6166e1b8
SHA-256: 3946de98db4fe7169cb09308c591920f5bae5c379c16c4a6469b89370ba52ffe
openssl-devel-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: 513dc18b5d50e37299e15f4c9f521e58
SHA-256: 0e3b0f0dc70539050deba554b30f1bf09c955948a275126e6b67118471a31315
openssl-perl-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: 355d33fd5274b1b1666eb9f2b1b321f3
SHA-256: 5d6a26dd2ab3fcded4a1180cae5b9c8531d3b3df75af4fdd42c1465e4ec5f3fb
openssl-static-1.0.1e-16.el6_5.4.s390x.rpm
File outdated by:  RHSA-2014:0376
    MD5: b203d9d9521a97c4b6f3b1b72f955612
SHA-256: 4ee6759084bcc0448ef6b5c3aa0483a40ad8d1bac2b89d8d54724100bff61b44
 
x86_64:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 3dbbe69a8b5db0ba7158ff840e9ab959
SHA-256: ab000dc7154406fcc4d6943c4e55bfedc1713a0b344d629a1570354a9f594926
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-debuginfo-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: fdb27fc651d3ed65743ee46250eda543
SHA-256: a0b3c5254e6f71f7b212789bcbf5dff42b960e41ce1dec4a525ef1b42cc47cd1
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-devel-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: c4819222453a9e854010087fac11352b
SHA-256: 1dee73bfee388dd6431dcb7bafb6c0b580df893bf0be964f25c708d1f7ed3391
openssl-perl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: e8542335125dced22db9b83ed910a01a
SHA-256: bf3e90241fabb8df1beec7779b9dfecfb2a20bb20865a394806dc9fe68eca5a6
openssl-static-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 520f651912d372ce01d0b2ab4cc79a78
SHA-256: eb72df8577777e79ed563a1fbee58928e31c5ea7317458ac11d4250fb0837293
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
openssl-1.0.1e-16.el6_5.4.src.rpm
File outdated by:  RHSA-2014:0376
    MD5: 1176d700e0f0a7a77628c83fe380e069
SHA-256: 72b869b44e62ec539a56a9597470bb6c4c7cd7f54cfd6bed5cd3072e76057147
 
IA-32:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-perl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 6d1aa56dd9aacb74d6194bcdcdb0b5ba
SHA-256: 94d80e256673178f384ce70e0f1e9e77f96f57b878c44f7fd83579472f506420
openssl-static-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: cbb0612f4ca08079fea3c25f8057553c
SHA-256: a0a18045c9ee25e919ad20e9f2da796d1f9350c89277dc99234f084057ff7a6f
 
x86_64:
openssl-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 4578678ec0916f47d9f90e4635ecff48
SHA-256: 3ee4271a465bc8cc530a4fa41efd10c99b4223ddf8c803d807dac5714c1e7288
openssl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 3dbbe69a8b5db0ba7158ff840e9ab959
SHA-256: ab000dc7154406fcc4d6943c4e55bfedc1713a0b344d629a1570354a9f594926
openssl-debuginfo-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 808628c7a7ca7e3bb0115729ef514c9c
SHA-256: 92412419ef68526b165eade604affae0389a7456a64942546559876137626a0a
openssl-debuginfo-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: fdb27fc651d3ed65743ee46250eda543
SHA-256: a0b3c5254e6f71f7b212789bcbf5dff42b960e41ce1dec4a525ef1b42cc47cd1
openssl-devel-1.0.1e-16.el6_5.4.i686.rpm
File outdated by:  RHSA-2014:0376
    MD5: 19cd8d0dd638a0925924e7a166f19bbb
SHA-256: 2c56dc545ebd686770d48bbcca2961c0d094d6d7423c57f7ffda8c6a604feb26
openssl-devel-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: c4819222453a9e854010087fac11352b
SHA-256: 1dee73bfee388dd6431dcb7bafb6c0b580df893bf0be964f25c708d1f7ed3391
openssl-perl-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: e8542335125dced22db9b83ed910a01a
SHA-256: bf3e90241fabb8df1beec7779b9dfecfb2a20bb20865a394806dc9fe68eca5a6
openssl-static-1.0.1e-16.el6_5.4.x86_64.rpm
File outdated by:  RHSA-2014:0376
    MD5: 520f651912d372ce01d0b2ab4cc79a78
SHA-256: eb72df8577777e79ed563a1fbee58928e31c5ea7317458ac11d4250fb0837293
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1045363 - CVE-2013-6449 openssl: crash when using TLS 1.2 caused by use of incorrect hash algorithm
1047840 - CVE-2013-6450 openssl: crash in DTLS renegotiation after packet loss
1049058 - CVE-2013-4353 openssl: client NULL dereference crash on malformed handshake packets


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/