FEDORA-2015-605de37b7f — security update for openssl

stable

openssl-1.0.2e-1.fc23

FEDORA-2015-605de37b7f created by tmraz 7 years ago for Fedora 23

Moderate security issues fixed in this update. Faster handling of some common elliptic curves enabled on 64 bit architectures. Improved Makefile.certificate to not use serial number 0 by default.

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2015-605de37b7f

This update has been submitted for testing by tmraz.

7 years ago

tmraz edited this update.

7 years ago

dhgutteridge commented & provided feedback 7 years ago

karma

No issues noted.

fedpop commented & provided feedback 7 years ago

karma

openssl applications still work.

hreindl commented & provided feedback 7 years ago

karma

works for me

BZ#1288322 CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak

BZ#1288320 CVE-2015-3194 OpenSSL: Certificate verify crash with missing PSS parameter

BZ#1288317 CVE-2015-3193 OpenSSL: BN_mod_exp may produce incorrect results on x86_64

This update has been pushed to testing.

7 years ago

This update has been submitted for stable by bodhi.

7 years ago

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

openssl-1.0.2e-1.fc23

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

7 years ago

in testing

7 years ago

in stable

7 years ago

modified

7 years ago

BZ#1135719 Makefile.certificate: don't set certificate serial number to 0 if user does not specify one

BZ#1164210 Set enable-ec_nistp_64_gcc_128?

BZ#1257836 Bogus -L/usr/lib in libssl.pc

BZ#1288317 CVE-2015-3193 OpenSSL: BN_mod_exp may produce incorrect results on x86_64

BZ#1288320 CVE-2015-3194 OpenSSL: Certificate verify crash with missing PSS parameter

BZ#1288322 CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak

openssl-1.0.2e-1.fc23

Automated Test Results

None