logo
DATABASE RESOURCES PRICING ABOUT US

Important: openssl, openssl11

Description

**Issue Overview:** A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERAL_NAME_cmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability. (CVE-2020-1971) **Affected Packages:** openssl, openssl11 **Issue Correction:** Run _yum update openssl_ to update your system. Run _yum update openssl11_ to update your system. **New Packages:** aarch64:     openssl-1.0.2k-19.amzn2.0.4.aarch64     openssl-libs-1.0.2k-19.amzn2.0.4.aarch64     openssl-devel-1.0.2k-19.amzn2.0.4.aarch64     openssl-static-1.0.2k-19.amzn2.0.4.aarch64     openssl-perl-1.0.2k-19.amzn2.0.4.aarch64     openssl-debuginfo-1.0.2k-19.amzn2.0.4.aarch64     openssl11-1.1.1c-15.amzn2.0.2.aarch64     openssl11-libs-1.1.1c-15.amzn2.0.2.aarch64     openssl11-devel-1.1.1c-15.amzn2.0.2.aarch64     openssl11-static-1.1.1c-15.amzn2.0.2.aarch64     openssl11-debuginfo-1.1.1c-15.amzn2.0.2.aarch64 i686:     openssl-1.0.2k-19.amzn2.0.4.i686     openssl-libs-1.0.2k-19.amzn2.0.4.i686     openssl-devel-1.0.2k-19.amzn2.0.4.i686     openssl-static-1.0.2k-19.amzn2.0.4.i686     openssl-perl-1.0.2k-19.amzn2.0.4.i686     openssl-debuginfo-1.0.2k-19.amzn2.0.4.i686     openssl11-1.1.1c-15.amzn2.0.2.i686     openssl11-libs-1.1.1c-15.amzn2.0.2.i686     openssl11-devel-1.1.1c-15.amzn2.0.2.i686     openssl11-static-1.1.1c-15.amzn2.0.2.i686     openssl11-debuginfo-1.1.1c-15.amzn2.0.2.i686 src:     openssl-1.0.2k-19.amzn2.0.4.src     openssl11-1.1.1c-15.amzn2.0.2.src x86_64:     openssl-1.0.2k-19.amzn2.0.4.x86_64     openssl-libs-1.0.2k-19.amzn2.0.4.x86_64     openssl-devel-1.0.2k-19.amzn2.0.4.x86_64     openssl-static-1.0.2k-19.amzn2.0.4.x86_64     openssl-perl-1.0.2k-19.amzn2.0.4.x86_64     openssl-debuginfo-1.0.2k-19.amzn2.0.4.x86_64     openssl11-1.1.1c-15.amzn2.0.2.x86_64     openssl11-libs-1.1.1c-15.amzn2.0.2.x86_64     openssl11-devel-1.1.1c-15.amzn2.0.2.x86_64     openssl11-static-1.1.1c-15.amzn2.0.2.x86_64     openssl11-debuginfo-1.1.1c-15.amzn2.0.2.x86_64


Affected Package


OS OS Version Package Name Package Version
Amazon Linux 2 openssl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-libs 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-devel 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-static 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-perl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-debuginfo 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl11 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-libs 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-devel 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-static 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-debuginfo 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-libs 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-devel 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-static 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-perl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-debuginfo 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl11 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-libs 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-devel 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-static 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-debuginfo 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl11 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-libs 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-devel 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-static 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-perl 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl-debuginfo 1.0.2k-19.amzn2.0.4
Amazon Linux 2 openssl11 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-libs 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-devel 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-static 1.1.1c-15.amzn2.0.2
Amazon Linux 2 openssl11-debuginfo 1.1.1c-15.amzn2.0.2

Related