[El-errata] ELSA-2016-0372 Important: Oracle Linux 7 openssl098e security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Mar 8 23:27:54 PST 2016
Oracle Linux Security Advisory ELSA-2016-0372
http://linux.oracle.com/errata/ELSA-2016-0372.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
openssl098e-0.9.8e-29.el7_2.3.i686.rpm
openssl098e-0.9.8e-29.el7_2.3.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/openssl098e-0.9.8e-29.el7_2.3.src.rpm
Description of changes:
[0.9.8e-29.3]
- fix CVE-2015-0293 - triggerable assert in SSLv2 server
- fix CVE-2015-3197 - SSLv2 ciphersuite enforcement
- disable SSLv2 in the generic TLS method
More information about the El-errata
mailing list