Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
slackwareSlackware Linux ProjectSSA-2010-090-01
HistoryMar 31, 2010 - 9:03 p.m.

[slackware-security] openssl

2010-03-3121:03:53
Slackware Linux Project
www.slackware.com
14

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.956 High

EPSS

Percentile

99.4%

JSON

New openssl packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0,
and -current to fix security issues.

More details about the issues may be found in the Common
Vulnerabilities and Exposures (CVE) database:

https://vulners.com/cve/CVE-2010-0433
https://vulners.com/cve/CVE-2010-0740

A recompiled proftpd package is required if you run ProFTPD.

Here are the details from the Slackware 13.0 ChangeLog:

patches/packages/openssl-0.9.8n-i486-1_slack13.0.txz: Upgraded.
This OpenSSL update contains some security related bugfixes.
For more information, see the included CHANGES and NEWS files, and:
https://vulners.com/cve/CVE-2010-0433
https://vulners.com/cve/CVE-2010-0740
(* Security fix *)
patches/packages/openssl-solibs-0.9.8n-i486-1_slack13.0.txz: Upgraded.

Where to find the new packages:

HINT: Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try. This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on http://slackware.com for
additional mirror sites near you.

Updated packages for Slackware 11.0:
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/openssl-0.9.8n-i486-1_slack11.0.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/openssl-solibs-0.9.8n-i486-1_slack11.0.tgz

Updated packages for Slackware 12.0:
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/openssl-0.9.8n-i486-1_slack12.0.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/openssl-solibs-0.9.8n-i486-1_slack12.0.tgz

Updated packages for Slackware 12.1:
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/openssl-0.9.8n-i486-1_slack12.1.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/openssl-solibs-0.9.8n-i486-1_slack12.1.tgz

Updated packages for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/openssl-0.9.8n-i486-1_slack12.2.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/openssl-solibs-0.9.8n-i486-1_slack12.2.tgz

Updated packages for Slackware 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssl-0.9.8n-i486-1_slack13.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssl-solibs-0.9.8n-i486-1_slack13.0.txz

Updated packages for Slackware x86_64 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssl-0.9.8n-x86_64-1_slack13.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssl-solibs-0.9.8n-x86_64-1_slack13.0.txz

Updated packages for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-0.9.8n-i486-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-0.9.8n-i486-1.txz

Updated packages for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/openssl-solibs-0.9.8n-x86_64-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssl-0.9.8n-x86_64-1.txz

MD5 signatures:

Slackware 11.0 packages:
e5aac04ceb42f5d1080cbdb4ecb21924 openssl-0.9.8n-i486-1_slack11.0.tgz
3749fdafb31d7c1dac2de358a48e706e openssl-solibs-0.9.8n-i486-1_slack11.0.tgz

Slackware 12.0 packages:
54a7a186a5a1646aa1104436ebf1e92a openssl-0.9.8n-i486-1_slack12.0.tgz
bcc9fb1f1ce607bdd9dd458435779bed openssl-solibs-0.9.8n-i486-1_slack12.0.tgz

Slackware 12.1 packages:
511cfdb620c5ca121857345facf6ce87 openssl-0.9.8n-i486-1_slack12.1.tgz
d65c64297ec3b9b969413cc4ad1bdb5a openssl-solibs-0.9.8n-i486-1_slack12.1.tgz

Slackware 12.2 packages:
a57d7201e22772e485ecaf3b94e30896 openssl-0.9.8n-i486-1_slack12.2.tgz
db7e31d1d84437a02b4c684686548d13 openssl-solibs-0.9.8n-i486-1_slack12.2.tgz

Slackware 13.0 packages:
43151a7d40e56ee42d33f12ce515a3d4 openssl-0.9.8n-i486-1_slack13.0.txz
1e8bb81cf8bc7740612dc7ebd78a43f2 openssl-solibs-0.9.8n-i486-1_slack13.0.txz

Slackware x86_64 13.0 packages:
3a5745eed98f7025d603ea7d4067b39c openssl-0.9.8n-x86_64-1_slack13.0.txz
41cda1b59e7e759696a1c6cf86e5fb0c openssl-solibs-0.9.8n-x86_64-1_slack13.0.txz

Slackware -current packages:
56d12bb20a3c06436bab994297afb082 openssl-0.9.8n-i486-1.txz
73b67b6a5999840ab02cde637aa1aa32 openssl-solibs-0.9.8n-i486-1.txz

Slackware x86_64 -current packages:
8d4c8524b79aecef6468a0b66c4647ac openssl-0.9.8n-x86_64-1.txz
0ced3665cac060cf01c3ac99edbaf571 openssl-solibs-0.9.8n-x86_64-1.txz

Installation instructions:

Upgrade the packages as root:
> upgradepkg openssl-solibs-0.9.8n-i486-1_slack13.0.txz openssl-0.9.8n-i486-1_slack13.0.txz

OSVersionArchitecturePackageVersionFilename
Slackware11.0i486openssl< 0.9.8nopenssl-0.9.8n-i486-1_slack11.0.tgz
Slackware11.0i486openssl-solibs< 0.9.8nopenssl-solibs-0.9.8n-i486-1_slack11.0.tgz
Slackware12.0i486openssl< 0.9.8nopenssl-0.9.8n-i486-1_slack12.0.tgz
Slackware12.0i486openssl-solibs< 0.9.8nopenssl-solibs-0.9.8n-i486-1_slack12.0.tgz
Slackware12.1i486openssl< 0.9.8nopenssl-0.9.8n-i486-1_slack12.1.tgz
Slackware12.1i486openssl-solibs< 0.9.8nopenssl-solibs-0.9.8n-i486-1_slack12.1.tgz
Slackware12.2i486openssl< 0.9.8nopenssl-0.9.8n-i486-1_slack12.2.tgz
Slackware12.2i486openssl-solibs< 0.9.8nopenssl-solibs-0.9.8n-i486-1_slack12.2.tgz
Slackware13.0i486openssl< 0.9.8nopenssl-0.9.8n-i486-1_slack13.0.txz
Slackware13.0i486openssl-solibs< 0.9.8nopenssl-solibs-0.9.8n-i486-1_slack13.0.txz
Rows per page:
1-10 of 161

Related

openvas 34
altlinux 4
nessus 24
securityvulns 4
fedora 4
f5 4
exploitpack 1
checkpoint_advisories 2
prion 2
seebug 2
cve 2
intel 1
openssl 2
debiancve 2
ubuntucve 2
veracode 1
exploitdb 1
redhat 2
oraclelinux 1
centos 1
gentoo 1
vmware 2
lenovo 2
openvas
openvas
Slackware Advisory SSA:2010-090-01 openssl
2012-09-11 00:00:00
Slackware Advisory SSA:2010-090-01 openssl
2012-09-11 00:00:00
Mandriva Update for openssl MDVSA-2010:076-1 (openssl)
2010-04-29 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package openssl10 version 0.9.8n-alt1
2010-03-25 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8n-alt1
2010-03-25 00:00:00
Security fix for the ALT Linux 9 package openssl10 version 0.9.8n-alt1
2010-03-25 00:00:00
nessus
nessus
OpenSSL < 0.9.8n Multiple Vulnerabilities
2010-03-26 00:00:00
OpenSSL < 0.9.8n Multiple Vulnerabilities
2010-03-26 00:00:00
OpenSSL < 0.9.8n Multiple Vulnerabilities
2010-03-26 00:00:00
securityvulns
securityvulns
OpenSSL DoS confitions
2010-04-22 00:00:00
[ MDVSA-2010:076-1 ] openssl
2010-04-22 00:00:00
Apple Mac OS X multiple security vulnerabilities
2011-07-06 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: openssl-1.0.0-1.fc13
2010-04-09 03:42:47
[SECURITY] Fedora 12 Update: openssl-1.0.0-4.fc12
2010-05-25 18:42:18
[SECURITY] Fedora 11 Update: openssl-0.9.8n-1.fc11
2010-04-16 23:49:46
f5
f5
K11533 : OpenSSL vulnerability CVE-2010-0740
2013-07-03 00:00:00
SOL11533 - OpenSSL vulnerability CVE-2010-0740
2010-05-31 00:00:00
SOL13432 - OpenSSL vulnerability CVE-2010-0433
2012-02-29 00:00:00
exploitpack
exploitpack
OpenSSL - Remote Denial of Service
2010-04-22 00:00:00
checkpoint_advisories
checkpoint_advisories
OpenSSL TLS Connection Record Handling Denial of Service - Ver2 (CVE-2010-0740)
2014-12-28 00:00:00
OpenSSL TLS Connection Record Handling Denial of Service (CVE-2010-0740)
2010-05-16 00:00:00
prion
prion
Null pointer dereference
2010-03-26 18:30:00
Null pointer dereference
2010-03-05 19:30:00
seebug
seebug
OpenSSL - Remote DoS
2014-07-01 00:00:00
OpenSSL TLS连接记录处理拒绝服务漏洞
2010-03-30 00:00:00
cve
cve
CVE-2010-0740
2010-03-26 18:30:00
CVE-2010-0433
2010-03-05 19:30:00
intel
intel
OpenSSL* vulnerability – Software Development Tools for Intel® Active Management Technology (Intel® AMT)
2010-07-20 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2010-0740
2010-03-24 00:00:00
Vulnerability in OpenSSL CVE-2010-0433
2010-01-19 00:00:00
debiancve
debiancve
CVE-2010-0740
2010-03-26 18:30:00
CVE-2010-0433
2010-03-05 19:30:00
ubuntucve
ubuntucve
CVE-2010-0740
2010-03-26 00:00:00
CVE-2010-0433
2010-03-05 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:45:18
exploitdb
exploitdb
OpenSSL - Remote Denial of Service
2010-04-22 00:00:00
redhat
redhat
(RHSA-2010:0162) Important: openssl security update
2010-03-25 00:00:00
(RHSA-2010:0440) Important: rhev-hypervisor security and bug fix update
2010-05-25 00:00:00
oraclelinux
oraclelinux
openssl security update
2010-03-25 00:00:00
centos
centos
openssl security update
2010-03-27 17:30:13
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2011-10-09 00:00:00
vmware
vmware
VMware ESX third party updates for Service Console
2010-09-30 00:00:00
VMware ESX third party updates for Service Console
2010-09-30 00:00:00
lenovo
lenovo
Intel® PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intel® PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.956 High

EPSS

Percentile

99.4%

JSON
Related for SSA-2010-090-01
openvas34altlinux4nessus24securityvulns4fedora4f54exploitpack1checkpoint_advisories2prion2seebug2cve2intel1openssl2debiancve2ubuntucve2veracode1exploitdb1redhat2oraclelinux1centos1gentoo1vmware2lenovo2