User: Password:
Subscribe / Log in / New account

Fedora alert FEDORA-2012-0708 (openssl)

Subject:  [SECURITY] Fedora 16 Update: openssl-1.0.0g-1.fc16
Date:  Sun, 22 Jan 2012 05:27:15 +0000
Message-ID:  <>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-0708 2012-01-19 21:20:51 -------------------------------------------------------------------------------- Name : openssl Product : Fedora 16 Version : 1.0.0g Release : 1.fc16 URL : Summary : A general purpose cryptography library with TLS implementation Description : The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. -------------------------------------------------------------------------------- Update Information: A new upstream package fixing a security vulnerability (DoS) regression in DTLS introduced by the previous update. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 19 2012 Tomas Mraz <> 1.0.0g-1 - new upstream release fixing CVE-2012-0050 - DoS regression in DTLS support introduced by the previous release (#782795) * Thu Jan 5 2012 Tomas Mraz <> 1.0.0f-1 - new upstream release fixing multiple CVEs * Tue Nov 22 2011 Tomas Mraz <> 1.0.0e-4 - move the libraries needed for static linking to Libs.private * Thu Nov 3 2011 Tomas Mraz <> 1.0.0e-3 - do not use AVX instructions when osxsave bit not set - add direct known answer tests for SHA2 algorithms * Wed Sep 21 2011 Tomas Mraz <> 1.0.0e-2 - fix missing initialization of variable in CHIL engine -------------------------------------------------------------------------------- References: [ 1 ] Bug #782795 - CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update openssl' at the command line. For more information, refer to "Managing Software with yum", available at All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds