Fedora Update System

openssl-1.0.2j-1.fc25
FEDORA-2016-64e0743e16 created by tmraz 3 years ago for Fedora 25
stable

Update from upstream with multiple security issues fixed.

How to install

sudo dnf upgrade --advisory=FEDORA-2016-64e0743e16

This update has been submitted for testing by tmraz.

3 years ago

tmraz edited this update.

New build(s):

  • openssl-1.0.2j-1.fc25

Removed build(s):

  • openssl-1.0.2i-2.fc25
3 years ago

This update has been pushed to testing.

3 years ago
User Icon besser82 commented & provided feedback 3 years ago
karma

Works fine! LGTM! =)

This update has been submitted for stable by bodhi.

3 years ago
User Icon mildew commented & provided feedback 3 years ago
karma

Works for me.

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Builds
1
openssl-1.0.2j-1.fc25
Settings
Unstable by Karma
-2
Stable by Karma
2
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
modified
3 years ago
BZ#1341705 CVE-2016-2177 openssl: Possible integer overflow vulnerabilities in codebase
0
0
BZ#1341706 CVE-2016-2177 openssl: Possible integer overflow vulnerabilities in codebase [fedora-all]
0
0
BZ#1343400 CVE-2016-2178 openssl: Non-constant time codepath followed for certain operations in DSA implementation
0
0
BZ#1343401 CVE-2016-2178 openssl: Non-constant time codepath followed for certain operations in DSA implementation [fedora-all]
0
0
BZ#1359615 CVE-2016-2180 OpenSSL: OOB read in TS_OBJ_print_bio()
0
0
BZ#1359616 CVE-2016-2180 OpenSSL: OOB read in TS_OBJ_print_bio() [fedora-all]
0
0
BZ#1367340 CVE-2016-2182 openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()
0
0
BZ#1367343 CVE-2016-2182 openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() [fedora-all]
0
0
BZ#1369113 CVE-2016-2181 openssl: DTLS replay protection bypass allows DoS against DTLS connection
0
0
BZ#1369114 CVE-2016-2181 openssl: DTLS replay protection bypass via sending large sequence number [fedora-all]
0
0
BZ#1369504 CVE-2016-2179 openssl: DTLS memory exhaustion DoS when messages are not removed from fragment buffer
0
0
BZ#1369505 CVE-2016-2179 openssl: DoS attack by filling up the queue for future messages [fedora-all]
0
0
BZ#1369855 CVE-2016-6302 openssl: Insufficient TLS session ticket HMAC length checks
0
0
BZ#1369858 CVE-2016-6302 openssl: Insufficient ticket sanity checks [fedora-all]
0
0
BZ#1377594 CVE-2016-6306 openssl: certificate message OOB reads
0
0
BZ#1377600 CVE-2016-6304 openssl: OCSP Status Request extension unbounded memory growth
0
0
BZ#1378408 CVE-2016-6304 CVE-2016-6306 openssl: various flaws [fedora-all]
0
0
BZ#1379310 CVE-2016-7052 openssl: Missing CRL sanity check
0
0

Automated Test Results

Copyright © 2007-2019 Red Hat, Inc. and others.

Running bodhi-5.1.0 on bodhi-web-137-snklf.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy