Red Hat Security Advisory

Synopsis:          Updated OpenSSL packages fix vulnerabilities
Advisory ID:       RHSA-2004:120-01
Issue date:        2004-03-17
Updated on:        2004-03-17
Product:           Red Hat Enterprise Linux
Keywords:          DoS
Cross references:  
Obsoletes:         RHBA-2003:295
CVE Names:         CAN-2004-0079 CAN-2004-0081 CAN-2004-0112
- ---------------------------------------------------------------------

1. Topic:

Updated OpenSSL packages that fix several remote denial of service
vulnerabilities are available for Red Hat Enterprise Linux 3.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 - i386, i686, ia64, ppc, ppc64, s390, s390x, x86_64
Red Hat Enterprise Linux ES version 3 - i386, i686
Red Hat Enterprise Linux WS version 3 - i386, i686, ia64, x86_64

3. Problem description:

The OpenSSL toolkit implements Secure Sockets Layer (SSL v2/v3),
Transport Layer Security (TLS v1) protocols, and serves as a full-strength
general purpose cryptography library.

Testing performed by the OpenSSL group using the Codenomicon TLS Test Tool
uncovered a null-pointer assignment in the do_change_cipher_spec() function
in OpenSSL 0.9.6c-0.9.6k and 0.9.7a-0.9.7c.  A remote attacker could
perform a carefully crafted SSL/TLS handshake against a server that uses
the OpenSSL library in such a way as to cause OpenSSL to crash. Depending
on the application this could lead to a denial of service.  The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2004-0079 to this issue.

Stephen Henson discovered a flaw in SSL/TLS handshaking code when using
Kerberos ciphersuites in OpenSSL 0.9.7a-0.9.7c.  A remote attacker could
perform a carefully crafted SSL/TLS handshake against a server configured
to use Kerberos ciphersuites in such a way as to cause OpenSSL to crash. 
Most applications have no ability to use Kerberos ciphersuites and will
therefore be unaffected by this issue.  The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0112 to
this issue.

Testing performed by the OpenSSL group using the Codenomicon TLS Test Tool
uncovered a bug in older versions of OpenSSL 0.9.6 prior to 0.9.6d that may
lead to a denial of service attack (infinite loop).  The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2004-0081 to this issue.  This issue affects only the OpenSSL
compatibility packages shipped with Red Hat Enterprise Linux 3.

These updated packages contain patches provided by the OpenSSL group that
protect against these issues.

Additionally, the version of libica included in the OpenSSL packages has
been updated to 1.3.5. This only affects IBM s390 and IBM eServer zSeries
customers and is required for the latest openCryptoki packages.

NOTE: Because server applications are affected by this issue, users are
advised to either restart all services that use OpenSSL functionality or
restart their systems after installing these updates.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade.  Only those
RPMs which are currently installed will be updated.  Those RPMs which are
not installed but included in the list will not be updated.  Note that you
can also use wildcards (*.rpm) if your current directory *only* contains
the desired RPMs.

Please note that this update is also available via Red Hat Network.  Many
people find this an easier way to apply updates.  To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

If up2date fails to connect to Red Hat Network due to SSL
Certificate Errors, you need to install a version of the
up2date client with an updated certificate.  The latest version of
up2date is available from the Red Hat FTP site and may also be
downloaded directly from the RHN website:

https://access.redhat.com

5. Bug IDs fixed  (  for more info):

117770 - CAN-2004-0079/0081/0112 Flaws in OpenSSL

6. RPMs required:

Red Hat Enterprise Linux AS version 3:

SRPMS: 
 


i386:
Available from Red Hat Network: openssl-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.i386.rpm

i686:
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm

ia64:
Available from Red Hat Network: openssl-0.9.7a-33.4.ia64.rpm
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ia64.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ia64.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.ia64.rpm

ppc:
Available from Red Hat Network: openssl-0.9.7a-33.4.ppc.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ppc.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ppc.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.ppc.rpm

ppc64:
Available from Red Hat Network: openssl-0.9.7a-33.4.ppc64.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ppc64.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ppc64.rpm

s390:
Available from Red Hat Network: openssl-0.9.7a-33.4.s390.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.s390.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.s390.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.s390.rpm

s390x:
Available from Red Hat Network: openssl-0.9.7a-33.4.s390x.rpm
Available from Red Hat Network: openssl-0.9.7a-33.4.s390.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.s390x.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.s390x.rpm

x86_64:
Available from Red Hat Network: openssl-0.9.7a-33.4.x86_64.rpm
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.x86_64.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.x86_64.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS: 
 


i386:
Available from Red Hat Network: openssl-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.i386.rpm

i686:
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS: 
 


i386:
Available from Red Hat Network: openssl-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.i386.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.i386.rpm

i686:
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm

ia64:
Available from Red Hat Network: openssl-0.9.7a-33.4.ia64.rpm
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ia64.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ia64.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.ia64.rpm

x86_64:
Available from Red Hat Network: openssl-0.9.7a-33.4.x86_64.rpm
Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
Available from Red Hat Network: openssl-devel-0.9.7a-33.4.x86_64.rpm
Available from Red Hat Network: openssl-perl-0.9.7a-33.4.x86_64.rpm
Available from Red Hat Network: openssl096b-0.9.6b-16.x86_64.rpm



7. Verificationx:

MD5 sum                          Package Name
- --------------------------------------------------------------------------

3b3b2a993ec786f7a1f31c7ec284ea1e 3AS/en/os/SRPMS/openssl-0.9.7a-33.4.src.rpm
fbe9785da72499e6a1bd2063ed6f4c98 3AS/en/os/SRPMS/openssl096b-0.9.6b-16.src.rpm
d05bb8902819dc2c689a70e9db80d744 3AS/en/os/i386/openssl-0.9.7a-33.4.i386.rpm
3f3d4ecbe4b1587939502f92f24e2b37 3AS/en/os/i386/openssl-devel-0.9.7a-33.4.i386.rpm
7dbb734563c4c2ba2b1c4f2908e452ce 3AS/en/os/i386/openssl-perl-0.9.7a-33.4.i386.rpm
01f99bab463ea2a0c34a2435776bbb07 3AS/en/os/i386/openssl096b-0.9.6b-16.i386.rpm
23ea387b8e0d59674b221cf6bd711da5 3AS/en/os/i686/openssl-0.9.7a-33.4.i686.rpm
55cabb0cf72a17fbdc4ec3f645189506 3AS/en/os/ia64/openssl-0.9.7a-33.4.ia64.rpm
23ea387b8e0d59674b221cf6bd711da5 3AS/en/os/ia64/openssl-0.9.7a-33.4.i686.rpm
3199e19f8077fc05b34315f214ac721c 3AS/en/os/ia64/openssl-devel-0.9.7a-33.4.ia64.rpm
c861a0dd00d2f843ac8c7865f78103b2 3AS/en/os/ia64/openssl-perl-0.9.7a-33.4.ia64.rpm
0152bfbded573d76abe5463cdda0f12f 3AS/en/os/ia64/openssl096b-0.9.6b-16.ia64.rpm
99c6aeac7b0ea8535e1984459d76e3bf 3AS/en/os/ppc/openssl-0.9.7a-33.4.ppc.rpm
76ebb7864ad21d231a557a0819ec9de9 3AS/en/os/ppc/openssl-devel-0.9.7a-33.4.ppc.rpm
cfe5035405485155fad6e270f62ac383 3AS/en/os/ppc/openssl-perl-0.9.7a-33.4.ppc.rpm
4e648449f2c1db92a638b0287fd42165 3AS/en/os/ppc/openssl096b-0.9.6b-16.ppc.rpm
ed685cb7cec41e6dfbd56914aeb074b5 3AS/en/os/ppc64/openssl-0.9.7a-33.4.ppc64.rpm
7ebb94cbb8175dd1e974254a51c72b44 3AS/en/os/ppc64/openssl-devel-0.9.7a-33.4.ppc64.rpm
d87236c47aba867545991572eb06b3d8 3AS/en/os/ppc64/openssl-perl-0.9.7a-33.4.ppc64.rpm
bef3431f7d8c1aef5342b63b59995d4b 3AS/en/os/s390/openssl-0.9.7a-33.4.s390.rpm
c5be24b20d318c17634fe70e548a49c4 3AS/en/os/s390/openssl-devel-0.9.7a-33.4.s390.rpm
8047af064fc9b2c4473208ef71f89551 3AS/en/os/s390/openssl-perl-0.9.7a-33.4.s390.rpm
bf0a81fbcde746ad2d90502fa07e2b08 3AS/en/os/s390/openssl096b-0.9.6b-16.s390.rpm
e32a76bcacbdf9784cea51e72ebbd0be 3AS/en/os/s390x/openssl-0.9.7a-33.4.s390x.rpm
bef3431f7d8c1aef5342b63b59995d4b 3AS/en/os/s390x/openssl-0.9.7a-33.4.s390.rpm
a79b9cf9018edc2a329569bdf4539012 3AS/en/os/s390x/openssl-devel-0.9.7a-33.4.s390x.rpm
94d49f39aa1e86c37e697ece88b1dcfb 3AS/en/os/s390x/openssl-perl-0.9.7a-33.4.s390x.rpm
02e2620abd085cca1fd3ff02d6e6b027 3AS/en/os/x86_64/openssl-0.9.7a-33.4.x86_64.rpm
23ea387b8e0d59674b221cf6bd711da5 3AS/en/os/x86_64/openssl-0.9.7a-33.4.i686.rpm
31ee33af40c6077a0433c50227bf1d2f 3AS/en/os/x86_64/openssl-devel-0.9.7a-33.4.x86_64.rpm
5b6fef5ba19a4abc843da86aa285110e 3AS/en/os/x86_64/openssl-perl-0.9.7a-33.4.x86_64.rpm
93d75bd894053d6017157269654f2580 3AS/en/os/x86_64/openssl096b-0.9.6b-16.x86_64.rpm
3b3b2a993ec786f7a1f31c7ec284ea1e 3ES/en/os/SRPMS/openssl-0.9.7a-33.4.src.rpm
fbe9785da72499e6a1bd2063ed6f4c98 3ES/en/os/SRPMS/openssl096b-0.9.6b-16.src.rpm
d05bb8902819dc2c689a70e9db80d744 3ES/en/os/i386/openssl-0.9.7a-33.4.i386.rpm
3f3d4ecbe4b1587939502f92f24e2b37 3ES/en/os/i386/openssl-devel-0.9.7a-33.4.i386.rpm
7dbb734563c4c2ba2b1c4f2908e452ce 3ES/en/os/i386/openssl-perl-0.9.7a-33.4.i386.rpm
01f99bab463ea2a0c34a2435776bbb07 3ES/en/os/i386/openssl096b-0.9.6b-16.i386.rpm
23ea387b8e0d59674b221cf6bd711da5 3ES/en/os/i686/openssl-0.9.7a-33.4.i686.rpm
3b3b2a993ec786f7a1f31c7ec284ea1e 3WS/en/os/SRPMS/openssl-0.9.7a-33.4.src.rpm
fbe9785da72499e6a1bd2063ed6f4c98 3WS/en/os/SRPMS/openssl096b-0.9.6b-16.src.rpm
d05bb8902819dc2c689a70e9db80d744 3WS/en/os/i386/openssl-0.9.7a-33.4.i386.rpm
3f3d4ecbe4b1587939502f92f24e2b37 3WS/en/os/i386/openssl-devel-0.9.7a-33.4.i386.rpm
7dbb734563c4c2ba2b1c4f2908e452ce 3WS/en/os/i386/openssl-perl-0.9.7a-33.4.i386.rpm
01f99bab463ea2a0c34a2435776bbb07 3WS/en/os/i386/openssl096b-0.9.6b-16.i386.rpm
23ea387b8e0d59674b221cf6bd711da5 3WS/en/os/i686/openssl-0.9.7a-33.4.i686.rpm
55cabb0cf72a17fbdc4ec3f645189506 3WS/en/os/ia64/openssl-0.9.7a-33.4.ia64.rpm
23ea387b8e0d59674b221cf6bd711da5 3WS/en/os/ia64/openssl-0.9.7a-33.4.i686.rpm
3199e19f8077fc05b34315f214ac721c 3WS/en/os/ia64/openssl-devel-0.9.7a-33.4.ia64.rpm
c861a0dd00d2f843ac8c7865f78103b2 3WS/en/os/ia64/openssl-perl-0.9.7a-33.4.ia64.rpm
0152bfbded573d76abe5463cdda0f12f 3WS/en/os/ia64/openssl096b-0.9.6b-16.ia64.rpm
02e2620abd085cca1fd3ff02d6e6b027 3WS/en/os/x86_64/openssl-0.9.7a-33.4.x86_64.rpm
23ea387b8e0d59674b221cf6bd711da5 3WS/en/os/x86_64/openssl-0.9.7a-33.4.i686.rpm
31ee33af40c6077a0433c50227bf1d2f 3WS/en/os/x86_64/openssl-devel-0.9.7a-33.4.x86_64.rpm
5b6fef5ba19a4abc843da86aa285110e 3WS/en/os/x86_64/openssl-perl-0.9.7a-33.4.x86_64.rpm
93d75bd894053d6017157269654f2580 3WS/en/os/x86_64/openssl096b-0.9.6b-16.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key is
available from https://www.redhat.com/security/keys.html

You can verify each package with the following command:
    
    rpm --checksig -v 

If you only wish to verify that each package has not been corrupted or
tampered with, examine only the md5sum with the following command:
    
    md5sum 


8. References:
 
  
  
CVE -CVE-2004-0079 
CVE -CVE-2004-0081 
CVE -CVE-2004-0112

9. Contact:

The Red Hat security contact is <secalert@redhat.com>.  More contact
details at https://www.redhat.com/solutions/security/news/contact.html

Copyright 2003 Red Hat, Inc.

Red Hat: OpenSSL Denial of service vulnerabilities

Updated OpenSSL packages that fix several remote denial of servicevulnerabilities are available for Red Hat Enterprise Linux 3.

Summary



Summary

The OpenSSL toolkit implements Secure Sockets Layer (SSL v2/v3),Transport Layer Security (TLS v1) protocols, and serves as a full-strengthgeneral purpose cryptography library.Testing performed by the OpenSSL group using the Codenomicon TLS Test Tooluncovered a null-pointer assignment in the do_change_cipher_spec() functionin OpenSSL 0.9.6c-0.9.6k and 0.9.7a-0.9.7c. A remote attacker couldperform a carefully crafted SSL/TLS handshake against a server that usesthe OpenSSL library in such a way as to cause OpenSSL to crash. Dependingon the application this could lead to a denial of service. The CommonVulnerabilities and Exposures project (cve.mitre.org) has assigned the nameCAN-2004-0079 to this issue.Stephen Henson discovered a flaw in SSL/TLS handshaking code when usingKerberos ciphersuites in OpenSSL 0.9.7a-0.9.7c. A remote attacker couldperform a carefully crafted SSL/TLS handshake against a server configuredto use Kerberos ciphersuites in such a way as to cause OpenSSL to crash. Most applications have no ability to use Kerberos ciphersuites and willtherefore be unaffected by this issue. The Common Vulnerabilities andExposures project (cve.mitre.org) has assigned the name CAN-2004-0112 tothis issue.Testing performed by the OpenSSL group using the Codenomicon TLS Test Tooluncovered a bug in older versions of OpenSSL 0.9.6 prior to 0.9.6d that maylead to a denial of service attack (infinite loop). The CommonVulnerabilities and Exposures project (cve.mitre.org) has assigned the nameCAN-2004-0081 to this issue. This issue affects only the OpenSSLcompatibility packages shipped with Red Hat Enterprise Linux 3.These updated packages contain patches provided by the OpenSSL group thatprotect against these issues.Additionally, the version of libica included in the OpenSSL packages hasbeen updated to 1.3.5. This only affects IBM s390 and IBM eServer zSeriescustomers and is required for the latest openCryptoki packages.NOTE: Because server applications are affected by this issue, users areadvised to either restart all services that use OpenSSL functionality orrestart their systems after installing these updates.


Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs.
Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.
If up2date fails to connect to Red Hat Network due to SSL Certificate Errors, you need to install a version of the up2date client with an updated certificate. The latest version of up2date is available from the Red Hat FTP site and may also be downloaded directly from the RHN website:
https://access.redhat.com
5. Bug IDs fixed ( for more info):
117770 - CAN-2004-0079/0081/0112 Flaws in OpenSSL
6. RPMs required:
Red Hat Enterprise Linux AS version 3:
SRPMS:


i386: Available from Red Hat Network: openssl-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.i386.rpm
i686: Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
ia64: Available from Red Hat Network: openssl-0.9.7a-33.4.ia64.rpm Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ia64.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ia64.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.ia64.rpm
ppc: Available from Red Hat Network: openssl-0.9.7a-33.4.ppc.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ppc.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ppc.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.ppc.rpm
ppc64: Available from Red Hat Network: openssl-0.9.7a-33.4.ppc64.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ppc64.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ppc64.rpm
s390: Available from Red Hat Network: openssl-0.9.7a-33.4.s390.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.s390.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.s390.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.s390.rpm
s390x: Available from Red Hat Network: openssl-0.9.7a-33.4.s390x.rpm Available from Red Hat Network: openssl-0.9.7a-33.4.s390.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.s390x.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.s390x.rpm
x86_64: Available from Red Hat Network: openssl-0.9.7a-33.4.x86_64.rpm Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.x86_64.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.x86_64.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS:


i386: Available from Red Hat Network: openssl-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.i386.rpm
i686: Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS:


i386: Available from Red Hat Network: openssl-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.i386.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.i386.rpm
i686: Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm
ia64: Available from Red Hat Network: openssl-0.9.7a-33.4.ia64.rpm Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.ia64.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.ia64.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.ia64.rpm
x86_64: Available from Red Hat Network: openssl-0.9.7a-33.4.x86_64.rpm Available from Red Hat Network: openssl-0.9.7a-33.4.i686.rpm Available from Red Hat Network: openssl-devel-0.9.7a-33.4.x86_64.rpm Available from Red Hat Network: openssl-perl-0.9.7a-33.4.x86_64.rpm Available from Red Hat Network: openssl096b-0.9.6b-16.x86_64.rpm


7. Verificationx:
MD5 sum Package Name
3b3b2a993ec786f7a1f31c7ec284ea1e 3AS/en/os/SRPMS/openssl-0.9.7a-33.4.src.rpm fbe9785da72499e6a1bd2063ed6f4c98 3AS/en/os/SRPMS/openssl096b-0.9.6b-16.src.rpm d05bb8902819dc2c689a70e9db80d744 3AS/en/os/i386/openssl-0.9.7a-33.4.i386.rpm 3f3d4ecbe4b1587939502f92f24e2b37 3AS/en/os/i386/openssl-devel-0.9.7a-33.4.i386.rpm 7dbb734563c4c2ba2b1c4f2908e452ce 3AS/en/os/i386/openssl-perl-0.9.7a-33.4.i386.rpm 01f99bab463ea2a0c34a2435776bbb07 3AS/en/os/i386/openssl096b-0.9.6b-16.i386.rpm 23ea387b8e0d59674b221cf6bd711da5 3AS/en/os/i686/openssl-0.9.7a-33.4.i686.rpm 55cabb0cf72a17fbdc4ec3f645189506 3AS/en/os/ia64/openssl-0.9.7a-33.4.ia64.rpm 23ea387b8e0d59674b221cf6bd711da5 3AS/en/os/ia64/openssl-0.9.7a-33.4.i686.rpm 3199e19f8077fc05b34315f214ac721c 3AS/en/os/ia64/openssl-devel-0.9.7a-33.4.ia64.rpm c861a0dd00d2f843ac8c7865f78103b2 3AS/en/os/ia64/openssl-perl-0.9.7a-33.4.ia64.rpm 0152bfbded573d76abe5463cdda0f12f 3AS/en/os/ia64/openssl096b-0.9.6b-16.ia64.rpm 99c6aeac7b0ea8535e1984459d76e3bf 3AS/en/os/ppc/openssl-0.9.7a-33.4.ppc.rpm 76ebb7864ad21d231a557a0819ec9de9 3AS/en/os/ppc/openssl-devel-0.9.7a-33.4.ppc.rpm cfe5035405485155fad6e270f62ac383 3AS/en/os/ppc/openssl-perl-0.9.7a-33.4.ppc.rpm 4e648449f2c1db92a638b0287fd42165 3AS/en/os/ppc/openssl096b-0.9.6b-16.ppc.rpm ed685cb7cec41e6dfbd56914aeb074b5 3AS/en/os/ppc64/openssl-0.9.7a-33.4.ppc64.rpm 7ebb94cbb8175dd1e974254a51c72b44 3AS/en/os/ppc64/openssl-devel-0.9.7a-33.4.ppc64.rpm d87236c47aba867545991572eb06b3d8 3AS/en/os/ppc64/openssl-perl-0.9.7a-33.4.ppc64.rpm bef3431f7d8c1aef5342b63b59995d4b 3AS/en/os/s390/openssl-0.9.7a-33.4.s390.rpm c5be24b20d318c17634fe70e548a49c4 3AS/en/os/s390/openssl-devel-0.9.7a-33.4.s390.rpm 8047af064fc9b2c4473208ef71f89551 3AS/en/os/s390/openssl-perl-0.9.7a-33.4.s390.rpm bf0a81fbcde746ad2d90502fa07e2b08 3AS/en/os/s390/openssl096b-0.9.6b-16.s390.rpm e32a76bcacbdf9784cea51e72ebbd0be 3AS/en/os/s390x/openssl-0.9.7a-33.4.s390x.rpm bef3431f7d8c1aef5342b63b59995d4b 3AS/en/os/s390x/openssl-0.9.7a-33.4.s390.rpm a79b9cf9018edc2a329569bdf4539012 3AS/en/os/s390x/openssl-devel-0.9.7a-33.4.s390x.rpm 94d49f39aa1e86c37e697ece88b1dcfb 3AS/en/os/s390x/openssl-perl-0.9.7a-33.4.s390x.rpm 02e2620abd085cca1fd3ff02d6e6b027 3AS/en/os/x86_64/openssl-0.9.7a-33.4.x86_64.rpm 23ea387b8e0d59674b221cf6bd711da5 3AS/en/os/x86_64/openssl-0.9.7a-33.4.i686.rpm 31ee33af40c6077a0433c50227bf1d2f 3AS/en/os/x86_64/openssl-devel-0.9.7a-33.4.x86_64.rpm 5b6fef5ba19a4abc843da86aa285110e 3AS/en/os/x86_64/openssl-perl-0.9.7a-33.4.x86_64.rpm 93d75bd894053d6017157269654f2580 3AS/en/os/x86_64/openssl096b-0.9.6b-16.x86_64.rpm 3b3b2a993ec786f7a1f31c7ec284ea1e 3ES/en/os/SRPMS/openssl-0.9.7a-33.4.src.rpm fbe9785da72499e6a1bd2063ed6f4c98 3ES/en/os/SRPMS/openssl096b-0.9.6b-16.src.rpm d05bb8902819dc2c689a70e9db80d744 3ES/en/os/i386/openssl-0.9.7a-33.4.i386.rpm 3f3d4ecbe4b1587939502f92f24e2b37 3ES/en/os/i386/openssl-devel-0.9.7a-33.4.i386.rpm 7dbb734563c4c2ba2b1c4f2908e452ce 3ES/en/os/i386/openssl-perl-0.9.7a-33.4.i386.rpm 01f99bab463ea2a0c34a2435776bbb07 3ES/en/os/i386/openssl096b-0.9.6b-16.i386.rpm 23ea387b8e0d59674b221cf6bd711da5 3ES/en/os/i686/openssl-0.9.7a-33.4.i686.rpm 3b3b2a993ec786f7a1f31c7ec284ea1e 3WS/en/os/SRPMS/openssl-0.9.7a-33.4.src.rpm fbe9785da72499e6a1bd2063ed6f4c98 3WS/en/os/SRPMS/openssl096b-0.9.6b-16.src.rpm d05bb8902819dc2c689a70e9db80d744 3WS/en/os/i386/openssl-0.9.7a-33.4.i386.rpm 3f3d4ecbe4b1587939502f92f24e2b37 3WS/en/os/i386/openssl-devel-0.9.7a-33.4.i386.rpm 7dbb734563c4c2ba2b1c4f2908e452ce 3WS/en/os/i386/openssl-perl-0.9.7a-33.4.i386.rpm 01f99bab463ea2a0c34a2435776bbb07 3WS/en/os/i386/openssl096b-0.9.6b-16.i386.rpm 23ea387b8e0d59674b221cf6bd711da5 3WS/en/os/i686/openssl-0.9.7a-33.4.i686.rpm 55cabb0cf72a17fbdc4ec3f645189506 3WS/en/os/ia64/openssl-0.9.7a-33.4.ia64.rpm 23ea387b8e0d59674b221cf6bd711da5 3WS/en/os/ia64/openssl-0.9.7a-33.4.i686.rpm 3199e19f8077fc05b34315f214ac721c 3WS/en/os/ia64/openssl-devel-0.9.7a-33.4.ia64.rpm c861a0dd00d2f843ac8c7865f78103b2 3WS/en/os/ia64/openssl-perl-0.9.7a-33.4.ia64.rpm 0152bfbded573d76abe5463cdda0f12f 3WS/en/os/ia64/openssl096b-0.9.6b-16.ia64.rpm 02e2620abd085cca1fd3ff02d6e6b027 3WS/en/os/x86_64/openssl-0.9.7a-33.4.x86_64.rpm 23ea387b8e0d59674b221cf6bd711da5 3WS/en/os/x86_64/openssl-0.9.7a-33.4.i686.rpm 31ee33af40c6077a0433c50227bf1d2f 3WS/en/os/x86_64/openssl-devel-0.9.7a-33.4.x86_64.rpm 5b6fef5ba19a4abc843da86aa285110e 3WS/en/os/x86_64/openssl-perl-0.9.7a-33.4.x86_64.rpm 93d75bd894053d6017157269654f2580 3WS/en/os/x86_64/openssl096b-0.9.6b-16.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key is available from https://www.redhat.com/security/keys.html
You can verify each package with the following command:
rpm --checksig -v
If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command:
md5sum

References

CVE -CVE-2004-0079 CVE -CVE-2004-0081 CVE -CVE-2004-0112

Package List


Severity
Advisory ID: RHSA-2004:120-01
Issued Date: : 2004-03-17
Updated on: 2004-03-17
Product: Red Hat Enterprise Linux
Keywords: DoS
Cross references:
Obsoletes: RHBA-2003:295
CVE Names: CAN-2004-0079 CAN-2004-0081 CAN-2004-0112

Topic


Topic

Updated OpenSSL packages that fix several remote denial of service

vulnerabilities are available for Red Hat Enterprise Linux 3.


 

Relevant Releases Architectures

Red Hat Enterprise Linux AS version 3 - i386, i686, ia64, ppc, ppc64, s390, s390x, x86_64

Red Hat Enterprise Linux ES version 3 - i386, i686

Red Hat Enterprise Linux WS version 3 - i386, i686, ia64, x86_64


Bugs Fixed


Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved