Lucene search
OracleLinuxELSA-2019-2471HistoryAug 14, 2019 - 12:00 a.m.
openssl security update
2019-08-1400:00:00
linux.oracle.com
165
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.047 Low
EPSS
Percentile
91.8%
[1.0.1e-58.0.1]
- Oracle bug 28730228: backport CVE-2018-0732
- Oracle bug 28758493: backport CVE-2018-0737
- Merge upstream patch to fix CVE-2018-0739
- Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz
- sha256 is used for the RSA pairwise consistency test instead of sha1
[1.0.1e-58] - fix CVE-2019-1559 - 0-byte record padding oracle
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 6 | src | openssl | < 1.0.1e-58.0.1.el6_10 | openssl-1.0.1e-58.0.1.el6_10.src.rpm |
| oracle linux | 6 | i686 | openssl | < 1.0.1e-58.0.1.el6_10 | openssl-1.0.1e-58.0.1.el6_10.i686.rpm |
| oracle linux | 6 | i686 | openssl-devel | < 1.0.1e-58.0.1.el6_10 | openssl-devel-1.0.1e-58.0.1.el6_10.i686.rpm |
| oracle linux | 6 | i686 | openssl-perl | < 1.0.1e-58.0.1.el6_10 | openssl-perl-1.0.1e-58.0.1.el6_10.i686.rpm |
| oracle linux | 6 | i686 | openssl-static | < 1.0.1e-58.0.1.el6_10 | openssl-static-1.0.1e-58.0.1.el6_10.i686.rpm |
| oracle linux | 6 | src | openssl | < 1.0.1e-58.0.1.el6_10 | openssl-1.0.1e-58.0.1.el6_10.src.rpm |
| oracle linux | 6 | i686 | openssl | < 1.0.1e-58.0.1.el6_10 | openssl-1.0.1e-58.0.1.el6_10.i686.rpm |
| oracle linux | 6 | x86_64 | openssl | < 1.0.1e-58.0.1.el6_10 | openssl-1.0.1e-58.0.1.el6_10.x86_64.rpm |
| oracle linux | 6 | i686 | openssl-devel | < 1.0.1e-58.0.1.el6_10 | openssl-devel-1.0.1e-58.0.1.el6_10.i686.rpm |
| oracle linux | 6 | x86_64 | openssl-devel | < 1.0.1e-58.0.1.el6_10 | openssl-devel-1.0.1e-58.0.1.el6_10.x86_64.rpm |
Related
ibm
ibm
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:2683-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for compat-openssl098 (openSUSE-SU-2018:2695-1)
2018-09-13 00:00:00
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2019-1400)
2020-01-23 00:00:00
suse
suse
Security update for compat-openssl098 (moderate)
2018-09-12 12:09:38
Security update for openssl-1_0_0 (moderate)
2018-10-05 12:11:01
Security update for openssl (moderate)
2018-09-30 18:09:41
paloalto
paloalto
OpenSSL Vulnerabilities in PAN-OS
2018-10-11 00:00:00
nessus
nessus
cloudlinux
cloudlinux
Fix of CVE: CVE-2018-0739, CVE-2018-0737, CVE-2021-3712, CVE-2018-0732
2021-09-21 22:11:57
fedora
fedora
[SECURITY] Fedora 28 Update: openssl-1.1.0i-1.fc28
2018-09-22 20:52:36
[SECURITY] Fedora 27 Update: openssl-1.1.0i-1.fc27
2018-10-02 15:03:41
[SECURITY] Fedora 29 Update: compat-openssl10-1.0.2o-7.fc29
2019-09-26 01:41:32
oraclelinux
oraclelinux
openssl security update
2018-10-15 00:00:00
openssl security update
2018-10-12 00:00:00
openssl security update
2018-10-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 1.0.2p-alt1
2018-08-16 00:00:00
osv
osv
openssl - security update
2018-07-28 00:00:00
openssl1.0 - security update
2018-12-19 00:00:00
openssl - security update
2018-11-30 00:00:00
slackware
slackware
[slackware-security] openssl
2018-08-15 00:18:35
symantec
symantec
OpenSSL Vulnerabilities 16-Apr-2018 and 12-Jun-2018
2018-10-10 08:01:01
mageia
mageia
Updated openssl packages fix security vulnerabilities
2018-09-02 22:07:30
debian
debian
[SECURITY] [DLA 1449-1] openssl security update
2018-07-28 03:56:18
[SECURITY] [DSA 4355-1] openssl1.0 security update
2018-12-19 22:29:59
[SECURITY] [DSA 4348-1] openssl security update
2018-11-30 22:26:20
centos
centos
openssl security update
2018-11-15 18:50:49
redhat
redhat
(RHSA-2018:3221) Moderate: openssl security, bug fix, and enhancement update
2018-10-30 04:31:37
ubuntu
ubuntu
OpenSSL vulnerabilities
2018-06-26 00:00:00
OpenSSL vulnerabilities
2018-06-26 00:00:00
OpenSSL vulnerability
2018-04-19 00:00:00
cloudfoundry
cloudfoundry
USN-3692-1: OpenSSL vulnerabilities | Cloud Foundry
2018-07-10 00:00:00
USN-3628-1: OpenSSL vulnerability | Cloud Foundry
2018-05-09 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2018-11-28 00:00:00
nodejsblog
nodejsblog
August 2018 Security Releases
2018-08-11 00:00:00
amazon
amazon
Medium: openssl
2018-11-07 22:07:00
Low: openssl
2018-04-19 17:38:00
prion
prion
Design/Logic Flaw
2018-04-16 18:29:00
photon
photon
freebsd
freebsd
OpenSSL -- Cache timing vulnerability
2018-04-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-06-13 03:48:25
Cache Timing Side-Channel Attack
2018-04-17 01:51:19
redhatcve
redhatcve
CVE-2018-0737
2018-04-17 04:20:15
aix
aix
Vulnerability in OpenSSL affects AIX (CVE-2018-0737)
2018-07-02 11:24:30
huawei
huawei
Security Advisory - Cache Timing Vulnerability in OpenSSL RSA Key Generation
2018-12-12 00:00:00
debiancve
debiancve
CVE-2018-0737
2018-04-16 18:29:00
cve
cve
CVE-2018-0737
2018-04-16 18:29:00
ubuntucve
ubuntucve
CVE-2018-0737
2018-04-16 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.047 Low
EPSS
Percentile
91.8%
Related for ELSA-2019-2471