stable

openssl101e-1.0.1e-6.el5

FEDORA-EPEL-2016-7191918aa5 created by robert 9 years ago for Fedora EPEL 5

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to impersonate a TLS server or an authenticated TLS client. (CVE-2015-7575)

This update has been submitted for testing by robert.

9 years ago

This update has been pushed to testing.

9 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

9 years ago

This update has been submitted for stable by robert.

9 years ago

This update has been pushed to stable.

9 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
disabled
Dates
submitted
9 years ago
in testing
9 years ago
in stable
9 years ago
Builds
1
openssl101e-1.0.1e-6.el5
BZ#1289841 CVE-2015-7575 TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)
0
0
openssl101e-1.0.1e-6.el5

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-2-tbfvl.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy