[El-errata] ELSA-2009-0004 Important: Enterprise Linux 4 openssl security update

Thu Jan 8 07:59:15 PST 2009

Enterprise Linux Security Advisory ELSA-2009-0004

https://rhn.redhat.com/errata/RHSA-2009-0004.html

The following updated rpms for Enterprise Linux 4 have been uploaded to 
the Unbreakable Linux Network:

i386:
openssl-0.9.7a-43.17.el4_7.2.i386.rpm
openssl-0.9.7a-43.17.el4_7.2.i686.rpm
openssl-devel-0.9.7a-43.17.el4_7.2.i386.rpm
openssl-perl-0.9.7a-43.17.el4_7.2.i386.rpm
openssl096b-0.9.6b-22.46.el4_7.i386.rpm

x86_64:
openssl-0.9.7a-43.17.el4_7.2.i686.rpm
openssl-0.9.7a-43.17.el4_7.2.x86_64.rpm
openssl-devel-0.9.7a-43.17.el4_7.2.i386.rpm
openssl-devel-0.9.7a-43.17.el4_7.2.x86_64.rpm
openssl-perl-0.9.7a-43.17.el4_7.2.x86_64.rpm
openssl096b-0.9.6b-22.46.el4_7.i386.rpm
openssl096b-0.9.6b-22.46.el4_7.x86_64.rpm

ia64:
openssl-0.9.7a-43.17.el4_7.2.i686.rpm
openssl-0.9.7a-43.17.el4_7.2.ia64.rpm
openssl-devel-0.9.7a-43.17.el4_7.2.ia64.rpm
openssl-perl-0.9.7a-43.17.el4_7.2.ia64.rpm
openssl096b-0.9.6b-22.46.el4_7.i386.rpm
openssl096b-0.9.6b-22.46.el4_7.ia64.rpm

SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/openssl-0.9.7a-43.17.el4_7.2.src.rpm
http://oss.oracle.com/el4/SRPMS-updates/openssl096b-0.9.6b-22.46.el4_7.src.rpm

Description of changes:

openssl:

[0.9.7a-43.17.2]
- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)

openssl096b:

[0.9.6b-22.46.el4_7]
- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)