openssl098e-0.9.8e-18.AXS4.2
エラータID: AXSA:2014-380:01
The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. This version of OpenSSL package is provided for compatibility with the previous Red Hat Enterprise Linux release.
Security issues fixed with this release:
• CVE-2014-0224
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability.
Update packages.
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability.
N/A
SRPMS
- openssl098e-0.9.8e-18.AXS4.2.src.rpm
MD5: 6ab25189c894d917a372a8ec09f28725
SHA-256: 147de703d7ffe421213bf3b56fa9c5592e82ad537062a5e1a96391defc8cef56
Size: 2.96 MB
Asianux Server 4 for x86
- openssl098e-0.9.8e-18.AXS4.2.i686.rpm
MD5: 47314e7d4086f6009bbf8cd7f5e2132c
SHA-256: e5cf221205b171334f6fbf97856d0a8aba2b2e34b03888d1bd54aac1214d587b
Size: 772.65 kB
Asianux Server 4 for x86_64
- openssl098e-0.9.8e-18.AXS4.2.x86_64.rpm
MD5: 92bae7b590346caa1944e3ba98284024
SHA-256: 41c4002d37813d17976601106fc5b336ef9ed7005003cea1707253357e05ed79
Size: 760.59 kB - openssl098e-0.9.8e-18.AXS4.2.i686.rpm
MD5: 47314e7d4086f6009bbf8cd7f5e2132c
SHA-256: e5cf221205b171334f6fbf97856d0a8aba2b2e34b03888d1bd54aac1214d587b
Size: 772.65 kB
日本語