FEDORA-2015-605de37b7f created by tmraz 4 years ago for Fedora 23
stable

Moderate security issues fixed in this update. Faster handling of some common elliptic curves enabled on 64 bit architectures. Improved Makefile.certificate to not use serial number 0 by default.

How to install

sudo dnf upgrade --advisory=FEDORA-2015-605de37b7f

This update has been submitted for testing by tmraz.

4 years ago

tmraz edited this update.

4 years ago
User Icon dhgutteridge commented & provided feedback 4 years ago
karma

No issues noted.

User Icon fedpop commented & provided feedback 4 years ago
karma

openssl applications still work.

User Icon hreindl commented & provided feedback 4 years ago
karma

works for me

BZ#1288322 CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak
BZ#1288320 CVE-2015-3194 OpenSSL: Certificate verify crash with missing PSS parameter
BZ#1288317 CVE-2015-3193 OpenSSL: BN_mod_exp may produce incorrect results on x86_64

This update has been pushed to testing.

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
modified
4 years ago
BZ#1135719 Makefile.certificate: don't set certificate serial number to 0 if user does not specify one
0
0
BZ#1164210 Set enable-ec_nistp_64_gcc_128?
0
0
BZ#1257836 Bogus -L/usr/lib in libssl.pc
0
0
BZ#1288317 CVE-2015-3193 OpenSSL: BN_mod_exp may produce incorrect results on x86_64
0
1
BZ#1288320 CVE-2015-3194 OpenSSL: Certificate verify crash with missing PSS parameter
0
1
BZ#1288322 CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak
0
1

Automated Test Results