MDVSA-2012:007

Package name

openssl

Date

2012-01-16

Advisory ID

MDVSA-2012:007

Affected versions

2011 i586 , 2011 x86_64

Problem description

Multiple vulnerabilities has been found and corrected in openssl:

The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f
performs a MAC check only if certain padding is valid, which makes
it easier for remote attackers to recover plaintext via a padding
oracle attack (CVE-2011-4108).

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when
X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to
have an unspecified impact by triggering failure of a policy check
(CVE-2011-4109).

The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before
1.0.0f does not properly initialize data structures for block cipher
padding, which might allow remote attackers to obtain sensitive
information by decrypting the padding data sent by an SSL peer
(CVE-2011-4576).

The Server Gated Cryptography (SGC) implementation in OpenSSL before
0.9.8s and 1.x before 1.0.0f does not properly handle handshake
restarts, which allows remote attackers to cause a denial of service
via unspecified vectors (CVE-2011-4619).

The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle
invalid parameters for the GOST block cipher, which allows remote
attackers to cause a denial of service (daemon crash) via crafted
data from a TLS client (CVE-2012-0027).

The updated packages have been patched to correct these issues.

Updated packages

2011 i586

 2291c13c44539a5e25f58750a5d6bf8f  2011/i586/libopenssl1.0.0-1.0.0d-2.2-mdv2011.0.i586.rpm
 c610330d2c4c7397feb126247b1fa94f  2011/i586/libopenssl-devel-1.0.0d-2.2-mdv2011.0.i586.rpm
 36c86a84320e1c8a17a74e4e68bc7d5a  2011/i586/libopenssl-engines1.0.0-1.0.0d-2.2-mdv2011.0.i586.rpm
 4b8054f2c169d2b3223195053bd15802  2011/i586/libopenssl-static-devel-1.0.0d-2.2-mdv2011.0.i586.rpm
 3c48b209b941a83a6acfef439c3f78b7  2011/i586/openssl-1.0.0d-2.2-mdv2011.0.i586.rpm 
 7af9d175d066db069aeb82248df9772b  2011/SRPMS/openssl-1.0.0d-2.2.src.rpm

2011 x86_64

 21a50bd2be83839266f033c9a0f0fabc  2011/x86_64/lib64openssl1.0.0-1.0.0d-2.2-mdv2011.0.x86_64.rpm
 7e80ee8e2d445c5f1985cd52d2316658  2011/x86_64/lib64openssl-devel-1.0.0d-2.2-mdv2011.0.x86_64.rpm
 e1f4faa3162a6bbc14b37e4cb8d1e8e2  2011/x86_64/lib64openssl-engines1.0.0-1.0.0d-2.2-mdv2011.0.x86_64.rpm
 6e3ac6d57cf0f4e13ed8e275a9bd2ff8  2011/x86_64/lib64openssl-static-devel-1.0.0d-2.2-mdv2011.0.x86_64.rpm
 e9e0306f8dc9f398915a646547e262e2  2011/x86_64/openssl-1.0.0d-2.2-mdv2011.0.x86_64.rpm 
 7af9d175d066db069aeb82248df9772b  2011/SRPMS/openssl-1.0.0d-2.2.src.rpm

References

• http://www.openssl.org/news/secadv_20120104.txt
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0027
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4619
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4576
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4109
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4108