Lucene search

K
oraclelinuxOracleLinuxELSA-2015-0716
HistoryMar 23, 2015 - 12:00 a.m.

openssl security and bug fix update

2015-03-2300:00:00
linux.oracle.com
42

EPSS

0.944

Percentile

99.2%

[1.0.1e-42.4]

  • update fix for CVE-2015-0287 to what was released upstream
    [1.0.1e-42.3]
  • fix CVE-2015-0209 - potential use after free in d2i_ECPrivateKey()
  • fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison
  • fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
  • fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
  • fix CVE-2015-0292 - integer underflow in base64 decoder
  • fix CVE-2015-0293 - triggerable assert in SSLv2 server
    [1.0.1e-42.2]
  • fix broken error detection when unwrapping unpadded key
    [1.0.1e-42.1]
  • fix the RFC 5649 for key material that does not need padding