ELSA-2018-4267 -- Oracle openssl_nssID: oval:org.secpod.oval:def:1504111 | Date: (C)2021-01-10 (M)2021-01-22 |
Class: PATCH | Family: unix |
[1.0.2k-16.0.1] - sha256 is used for the RSA pairwise consistency test instead of sha1 [1.0.2k-16] - fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA - fix incorrect error message on FIPS DSA parameter generation [1.0.2k-14] - ppc64le is not multilib architecture [1.0.2k-13] - add S390x assembler updates - make CA name list comparison function case sensitive - fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily - fix CVE-2018-0732 - large prime DH DoS of TLS client - fix CVE-2018-0737 - RSA key generation cache timing vulnerability - fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure