Secunia Logo
 Vulnerability IntelligenceVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Red Hat update for OpenSSL
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Red Hat update for OpenSSL
Secunia Advisory: SA9887
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2003-10-01
Popularity: 9,478 views

Critical:
Highly critical
Impact: DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:RedHat Enterprise Linux AS 2.1
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux WS 2.1
RedHat Linux 7.1
RedHat Linux 7.2
RedHat Linux 7.3
RedHat Linux 8.0
RedHat Linux 9
RedHat Linux Advanced Server 2.1 for Itanium
RedHat Linux Advanced Workstation 2.1 for Itanium
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2003-0545
CVE-2003-0543
CVE-2003-0544
Description:
Red Hat has issued updated packages for OpenSSL. These fix different vulnerabilities which could lead to a Denial of Service and potentially system access.

Only Red Hat 9 is affected by CAN-2003-0545 which potentially could lead to execution of arbitrary code.

For more information:
SA9886

Solution:
Updated packages for Enterprise versions and Advanced Workstation are only available via Red Hat Network.

Updated packages for other versions:

Red Hat Linux 7.1:

SRPMS:
ftp://updates.redhat.com/7.1/en/os/SRPMS/openssl-0.9.6-19.src.rpm
ftp://updates.redhat.com/7.1/en/os/SRPMS/openssl095a-0.9.5a-23.7.1.src.rpm
ftp://updates.redhat.com/7.1/en/os/SRPMS/openssl-0.9.6-19.1.src.rpm
ftp://updates.redhat.com/7.1/en/os/SRPMS/openssl095a-0.9.5a-23.7.3.src.rpm

i386:
ftp://updates.redhat.com/7.1/en/os/i386/openssl-0.9.6-19.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/openssl-devel-0.9.6-19.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/openssl-perl-0.9.6-19.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/openssl-python-0.9.6-19.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/openssl095a-0.9.5a-23.7.3.i386.rpm

Red Hat Linux 7.1 for iSeries (64 bit):

SRPMS:
ftp://updates.redhat.com/7.1/en/os/iS...PMS/openssl095a-0.9.5a-23.7.1.src.rpm
ftp://updates.redhat.com/7.1/en/os/iSeries/SRPMS/openssl-0.9.6-19.1.src.rpm

ppc:
ftp://updates.redhat.com/7.1/en/os/iSeries/ppc/openssl095a-0.9.5a-23.7.1.ppc.rpm
ftp://updates.redhat.com/7.1/en/os/iSeries/ppc/openssl-0.9.6-19.1.ppc.rpm
ftp://updates.redhat.com/7.1/en/os/iSeries/ppc/openssl-devel-0.9.6-19.1.ppcrpm
ftp://updates.redhat.com/7.1/en/os/iSeries/ppc/openssl-perl-0.9.6-19.1.ppc.rpm
ftp://updates.redhat.com/7.1/en/os/iSeries/ppc/openssl-python-0.9.6-19.1.ppc.rpm

Red Hat Linux 7.1 for pSeries (64 bit):

SRPMS:
ftp://updates.redhat.com/7.1/en/os/pS...PMS/openssl095a-0.9.5a-23.7.1.src.rpm
ftp://updates.redhat.com/7.1/en/os/pSeries/SRPMS/openssl-0.9.6-19.1.src.rpm

ppc:
ftp://updates.redhat.com/7.1/en/os/pSeries/ppc/openssl095a-0.9.5a-23.7.1.ppc.rpm
ftp://updates.redhat.com/7.1/en/os/pSeries/ppc/openssl-0.9.6-19.1.ppc.rpm
ftp://updates.redhat.com/7.1/en/os/pSeries/ppc/openssl-devel-0.9.6-19.1.ppcrpm
ftp://updates.redhat.com/7.1/en/os/pSeries/ppc/openssl-perl-0.9.6-19.1.ppc.rpm
ftp://updates.redhat.com/7.1/en/os/pSeries/ppc/openssl-python-0.9.6-19.1.ppc.rpm

Red Hat Linux 7.2:

SRPMS:
ftp://updates.redhat.com/7.2/en/os/SRPMS/openssl095a-0.9.5a-23.7.3.src.rpm
ftp://updates.redhat.com/7.2/en/os/SRPMS/openssl096-0.9.6-23.7.src.rpm
ftp://updates.redhat.com/7.2/en/os/SRPMS/openssl-0.9.6b-35.7.src.rpm

i386:
ftp://updates.redhat.com/7.2/en/os/i386/openssl095a-0.9.5a-23.7.3.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/openssl096-0.9.6-23.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/openssl-0.9.6b-35.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/openssl-devel-0.9.6b-35.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/openssl-perl-0.9.6b-35.7.i386.rpm

i686:
ftp://updates.redhat.com/7.2/en/os/i686/openssl-0.9.6b-35.7.i686.rpm

ia64:
ftp://updates.redhat.com/7.2/en/os/ia64/openssl095a-0.9.5a-23.7.3.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/openssl096-0.9.6-23.7.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/openssl-0.9.6b-35.7.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/openssl-devel-0.9.6b-35.7.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/openssl-perl-0.9.6b-35.7.ia64.rpm

Red Hat Linux 7.3:

SRPMS:
ftp://updates.redhat.com/7.3/en/os/SRPMS/openssl095a-0.9.5a-23.7.3.src.rpm
ftp://updates.redhat.com/7.3/en/os/SRPMS/openssl096-0.9.6-23.7.src.rpm
ftp://updates.redhat.com/7.3/en/os/SRPMS/openssl-0.9.6b-35.7.src.rpm

i386:
ftp://updates.redhat.com/7.3/en/os/i386/openssl095a-0.9.5a-23.7.3.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/openssl096-0.9.6-23.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/openssl-0.9.6b-35.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/openssl-devel-0.9.6b-35.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/openssl-perl-0.9.6b-35.7.i386.rpm

i686:
ftp://updates.redhat.com/7.3/en/os/i686/openssl-0.9.6b-35.7.i686.rpm

Red Hat Linux 8.0:

SRPMS:
ftp://updates.redhat.com/8.0/en/os/SRPMS/openssl095a-0.9.5a-23.8.src.rpm
ftp://updates.redhat.com/8.0/en/os/SRPMS/openssl096-0.9.6-23.8.src.rpm
ftp://updates.redhat.com/8.0/en/os/SRPMS/openssl-0.9.6b-35.8.src.rpm

i386:
ftp://updates.redhat.com/8.0/en/os/i386/openssl095a-0.9.5a-23.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/openssl096-0.9.6-23.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/openssl-0.9.6b-35.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/openssl-devel-0.9.6b-35.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/openssl-perl-0.9.6b-35.8.i386.rpm

i686:
ftp://updates.redhat.com/8.0/en/os/i686/openssl-0.9.6b-35.8.i686.rpm

Red Hat Linux 9:

SRPMS:
ftp://updates.redhat.com/9/en/os/SRPMS/openssl-0.9.7a-20.src.rpm
ftp://updates.redhat.com/9/en/os/SRPMS/openssl096-0.9.6-23.9.src.rpm
ftp://updates.redhat.com/9/en/os/SRPMS/openssl096b-0.9.6b-12.src.rpm

i386:
ftp://updates.redhat.com/9/en/os/i386/openssl-0.9.7a-20.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/openssl-devel-0.9.7a-20.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/openssl-perl-0.9.7a-20.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/openssl096-0.9.6-23.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/openssl096b-0.9.6b-12.i386.rpm

i686:
ftp://updates.redhat.com/9/en/os/i686/openssl-0.9.7a-20.i686.rpm

Red Hat Enterprise Linux AS (v. 2.1)
SRPMS:
openssl-0.9.6b-35.7.src.rpm 9d82266fda42b9272ff30b6541600412
openssl095a-0.9.5a-23.7.3.src.rpm dfa32bec87555eadabd637b7034e0165
openssl096-0.9.6-23.7.src.rpm 6490df50c9746fbd3e719af42657bbab

i386:
openssl-0.9.6b-35.7.i386.rpm ed16918820e56e8497bc6d27bd9da7d7
openssl-devel-0.9.6b-35.7.i386.rpm 4f34511877a374a47291f5f8c9c6aa70
openssl-perl-0.9.6b-35.7.i386.rpm 2519d525a9af5eb3025b0f1b92a43b1a
openssl095a-0.9.5a-23.7.3.i386.rpm 1d520359aa1c2c48f8a026d1391b9fa9
openssl096-0.9.6-23.7.i386.rpm 555d808ef4816738608871a41664a580

i686:
openssl-0.9.6b-35.7.i686.rpm 545840cf2e61962459e6b0725908759e

ia64:
openssl-0.9.6b-35.7.ia64.rpm 9cd2a3747be2fff06ab9320a70aa9755
openssl-devel-0.9.6b-35.7.ia64.rpm 3667cfdb224f43224348707590fa0edb
openssl-perl-0.9.6b-35.7.ia64.rpm 6c0a1857e028c56b0bba8070a8c5e223
openssl095a-0.9.5a-23.7.3.ia64.rpm f6bc25dc552e1ac86c94d29264689a8a
openssl096-0.9.6-23.7.ia64.rpm de22871be5c4a3a1af8064fd7dfff4ec

Red Hat Enterprise Linux ES (v. 2.1)
SRPMS:
openssl-0.9.6b-35.7.src.rpm 9d82266fda42b9272ff30b6541600412

i386:
openssl-0.9.6b-35.7.i386.rpm ed16918820e56e8497bc6d27bd9da7d7
openssl-devel-0.9.6b-35.7.i386.rpm 4f34511877a374a47291f5f8c9c6aa70
openssl-perl-0.9.6b-35.7.i386.rpm 2519d525a9af5eb3025b0f1b92a43b1a

i686:
openssl-0.9.6b-35.7.i686.rpm 545840cf2e61962459e6b0725908759e

Red Hat Enterprise Linux WS (v. 2.1)
SRPMS:
openssl-0.9.6b-35.7.src.rpm 9d82266fda42b9272ff30b6541600412

i386:
openssl-0.9.6b-35.7.i386.rpm ed16918820e56e8497bc6d27bd9da7d7
openssl-devel-0.9.6b-35.7.i386.rpm 4f34511877a374a47291f5f8c9c6aa70
openssl-perl-0.9.6b-35.7.i386.rpm 2519d525a9af5eb3025b0f1b92a43b1a

i686:
openssl-0.9.6b-35.7.i686.rpm 545840cf2e61962459e6b0725908759e

Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
SRPMS:
openssl-0.9.6b-35.7.src.rpm 9d82266fda42b9272ff30b6541600412
openssl095a-0.9.5a-23.7.3.src.rpm dfa32bec87555eadabd637b7034e0165
openssl096-0.9.6-23.7.src.rpm 6490df50c9746fbd3e719af42657bbab

ia64:
openssl-0.9.6b-35.7.ia64.rpm 9cd2a3747be2fff06ab9320a70aa9755
openssl-devel-0.9.6b-35.7.ia64.rpm 3667cfdb224f43224348707590fa0edb
openssl-perl-0.9.6b-35.7.ia64.rpm 6c0a1857e028c56b0bba8070a8c5e223
openssl095a-0.9.5a-23.7.3.ia64.rpm f6bc25dc552e1ac86c94d29264689a8a
openssl096-0.9.6-23.7.ia64.rpm de22871be5c4a3a1af8064fd7dfff4ec

Original Advisory:
http://rhn.redhat.com/errata/RHSA-2003-291.html
http://rhn.redhat.com/errata/RHSA-2003-292.html
http://rhn.redhat.com/errata/RHSA-2003-293.html

Other References:
SA9886:
http://secunia.com/advisories/9886/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

3rd Dec, 2008
New advisories: 24
New vulnerabilities: 39
Updated advisories: 41

Moderately // 254 views
mvnForum Unspecified Cross-Site Scripting and Request Forgery
Less // 241 views
Debian update for awstats
Moderately // 257 views
Kolab Server ClamAV Multiple Vulnerabilities
Less // 315 views
Movable Type Unspecified Cross-Site Scripting Vulnerability
Moderately // 290 views
Sunbyte e-Flower "id" SQL Injection Vulnerability
Not // 323 views
SUSE update for kernel
Not // 420 views
HP-UX Unspecified Local Denial of Service Vulnerability
Moderately // 357 views
WebGUI Executable Attachments Vulnerability
Moderately // 552 views
SquirrelMail Malformed HTML Mail Message Script Insertion
Less // 545 views
VMware ESX Server update for bzip2

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Sun Java JDK / JRE Multiple Vulnerabilities // 89 views
2. Adobe Flash Player Multiple Security Issues and Vulnerabilities // 44 views
3. SquirrelMail Malformed HTML Mail Message Script Insertion // 41 views
4. VMware ESX / ESXi Virtual Hardware Memory Corruption Vulnerability // 41 views
5. phpBB Avatar Functions Information Disclosure and Deletion // 37 views
6. VMware ESX Server update for bzip2 // 36 views
7. phpBB Multiple Vulnerabilities // 35 views
8. mvnForum Unspecified Cross-Site Scripting and Request Forgery // 31 views
9. HP-UX Unspecified Local Denial of Service Vulnerability // 30 views
10. Subdreamer Light Global Variables SQL Injection Vulnerability // 28 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008