security update in Fedora 23 for openssl

Status: stable 3 years ago

Moderate security issues fixed in this update. Faster handling of some common elliptic curves enabled on 64 bit architectures. Improved Makefile.certificate to not use serial number 0 by default.

How to install

sudo dnf upgrade --advisory=FEDORA-2015-605de37b7f

Comments 8

This update has been submitted for testing by tmraz.

tmraz edited this update.

No issues noted.

karma: +1 critpath: +1

openssl applications still work.

karma: +1 critpath: +1

works for me

karma: +1 critpath: +1 #1288322: +1 #1288320: +1 #1288317: +1

This update has been pushed to testing.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
Test Gating
Submitted by
Update Type
Update Severity
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Autopush (time)
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago
modified 3 years ago

Related Bugs 6

00 #1135719 Makefile.certificate: don't set certificate serial number to 0 if user does not specify one
00 #1164210 Set enable-ec_nistp_64_gcc_128?
00 #1257836 Bogus -L/usr/lib in libssl.pc
0+1 #1288317 CVE-2015-3193 OpenSSL: BN_mod_exp may produce incorrect results on x86_64
0+1 #1288320 CVE-2015-3194 OpenSSL: Certificate verify crash with missing PSS parameter
0+1 #1288322 CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak

Automated Test Results