Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2013-4353
Vulnerability from cvelistv5
Published
2014-01-09 01:00
Modified
2024-08-06 16:38
Severity ?
EPSS score ?
Summary
The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T16:38:01.888Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.splunk.com/view/SP-CAAAMB3" }, { "name": "DSA-2837", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2014/dsa-2837" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.openssl.org/gitweb/?p=openssl.git%3Ba=blob_plain%3Bf=CHANGES%3Bhb=refs/heads/OpenSSL_1_0_1-stable" }, { "name": "FEDORA-2014-9308", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841" }, { "name": "USN-2079-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-2079-1" }, { "name": "RHSA-2014:0015", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "name": "openSUSE-SU-2014:0099", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=197e0ea817ad64820789d86711d55ff50d71f631" }, { "name": "FEDORA-2014-9301", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "name": "RHSA-2014:0041", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2014-0041.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.openssl.org/news/vulnerabilities.html" }, { "name": "openSUSE-SU-2014:0096", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html" }, { "name": "openSUSE-SU-2014:0094", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2014-01-06T00:00:00", "descriptions": [ { "lang": "en", "value": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-01-04T20:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.splunk.com/view/SP-CAAAMB3" }, { "name": "DSA-2837", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2014/dsa-2837" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.openssl.org/gitweb/?p=openssl.git%3Ba=blob_plain%3Bf=CHANGES%3Bhb=refs/heads/OpenSSL_1_0_1-stable" }, { "name": "FEDORA-2014-9308", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841" }, { "name": "USN-2079-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-2079-1" }, { "name": "RHSA-2014:0015", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "name": "openSUSE-SU-2014:0099", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=197e0ea817ad64820789d86711d55ff50d71f631" }, { "name": "FEDORA-2014-9301", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "name": "RHSA-2014:0041", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2014-0041.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.openssl.org/news/vulnerabilities.html" }, { "name": "openSUSE-SU-2014:0096", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html" }, { "name": "openSUSE-SU-2014:0094", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2013-4353", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.splunk.com/view/SP-CAAAMB3", "refsource": "CONFIRM", "url": "http://www.splunk.com/view/SP-CAAAMB3" }, { "name": "DSA-2837", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2014/dsa-2837" }, { "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843" }, { "name": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable", "refsource": "CONFIRM", "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable" }, { "name": "FEDORA-2014-9308", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html" }, { "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841" }, { "name": "USN-2079-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2079-1" }, { "name": "RHSA-2014:0015", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "name": "openSUSE-SU-2014:0099", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html" }, { "name": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631", "refsource": "CONFIRM", "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631" }, { "name": "FEDORA-2014-9301", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "name": "RHSA-2014:0041", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2014-0041.html" }, { "name": "http://www.openssl.org/news/vulnerabilities.html", "refsource": "CONFIRM", "url": "http://www.openssl.org/news/vulnerabilities.html" }, { "name": "openSUSE-SU-2014:0096", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html" }, { "name": "openSUSE-SU-2014:0094", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html" } ] } } } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2013-4353", "datePublished": "2014-01-09T01:00:00", "dateReserved": "2013-06-12T00:00:00", "dateUpdated": "2024-08-06T16:38:01.888Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2013-4353\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2014-01-09T01:55:03.153\",\"lastModified\":\"2024-11-21T01:55:24.607\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n ssl3_take_mac en ssl/s3_both.c en OpenSSL 1.0.1 anterior a 1.0.1f permite a los servidores TLS remotos provocar una denegaci\u00f3n de servicio (referencia a un puntero NULL y ca\u00edda de aplicaci\u00f3n) a trav\u00e9s de un registro Next Protocol Negotiation modificado en un TLS handshake.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D1C00C0-C77E-4255-9ECA-20F2673C7366\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"21F16D65-8A46-4AC7-8970-73AB700035FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"92F393FF-7E6F-4671-BFBF-060162E12659\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1B85A09-CF8D-409D-966E-168F9959F6F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A66E6CF-39CF-412E-8EF0-8E10BA21B4A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C684FB18-FDDC-4BED-A28C-C23EE6CD0094\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A74A79A7-4FAF-4C81-8622-050008B96AE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEDACCB9-8D61-49EE-9957-9E58BC7BB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4993DD56-F9E3-4AC8-AC3E-BF204B950DEC\"}]}]}],\"references\":[{\"url\":\"http://git.openssl.org/gitweb/?p=openssl.git%3Ba=blob_plain%3Bf=CHANGES%3Bhb=refs/heads/OpenSSL_1_0_1-stable\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=197e0ea817ad64820789d86711d55ff50d71f631\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0015.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0041.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=isg400001841\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=isg400001843\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2014/dsa-2837\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.openssl.org/news/vulnerabilities.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.splunk.com/view/SP-CAAAMB3\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-2079-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1049058\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://git.openssl.org/gitweb/?p=openssl.git%3Ba=blob_plain%3Bf=CHANGES%3Bhb=refs/heads/OpenSSL_1_0_1-stable\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=197e0ea817ad64820789d86711d55ff50d71f631\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0015.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0041.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=isg400001841\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=isg400001843\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2014/dsa-2837\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openssl.org/news/vulnerabilities.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.splunk.com/view/SP-CAAAMB3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-2079-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1049058\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
gsd-2013-4353
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2013-4353", "description": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.", "id": "GSD-2013-4353", "references": [ "https://www.suse.com/security/cve/CVE-2013-4353.html", "https://www.debian.org/security/2014/dsa-2837", "https://access.redhat.com/errata/RHSA-2014:0416", "https://access.redhat.com/errata/RHSA-2014:0041", "https://access.redhat.com/errata/RHSA-2014:0015", "https://advisories.mageia.org/CVE-2013-4353.html", "https://alas.aws.amazon.com/cve/html/CVE-2013-4353.html", "https://linux.oracle.com/cve/CVE-2013-4353.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2013-4353" ], "details": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.", "id": "GSD-2013-4353", "modified": "2023-12-13T01:22:16.801484Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2013-4353", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.splunk.com/view/SP-CAAAMB3", "refsource": "CONFIRM", "url": "http://www.splunk.com/view/SP-CAAAMB3" }, { "name": "DSA-2837", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2014/dsa-2837" }, { "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843" }, { "name": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable", "refsource": "CONFIRM", "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable" }, { "name": "FEDORA-2014-9308", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html" }, { "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841" }, { "name": "USN-2079-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2079-1" }, { "name": "RHSA-2014:0015", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "name": "openSUSE-SU-2014:0099", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html" }, { "name": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631", "refsource": "CONFIRM", "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631" }, { "name": "FEDORA-2014-9301", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "name": "RHSA-2014:0041", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2014-0041.html" }, { "name": "http://www.openssl.org/news/vulnerabilities.html", "refsource": "CONFIRM", "url": "http://www.openssl.org/news/vulnerabilities.html" }, { "name": "openSUSE-SU-2014:0096", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html" }, { "name": "openSUSE-SU-2014:0094", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2013-4353" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-20" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.openssl.org/news/vulnerabilities.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.openssl.org/news/vulnerabilities.html" }, { "name": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable" }, { "name": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631", "refsource": "CONFIRM", "tags": [], "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "name": "RHSA-2014:0015", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "name": "USN-2079-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-2079-1" }, { "name": "DSA-2837", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2014/dsa-2837" }, { "name": "openSUSE-SU-2014:0096", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html" }, { "name": "RHSA-2014:0041", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2014-0041.html" }, { "name": "openSUSE-SU-2014:0094", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html" }, { "name": "openSUSE-SU-2014:0099", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html" }, { "name": "http://www.splunk.com/view/SP-CAAAMB3", "refsource": "CONFIRM", "tags": [], "url": "http://www.splunk.com/view/SP-CAAAMB3" }, { "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843", "refsource": "CONFIRM", "tags": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843" }, { "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841", "refsource": "CONFIRM", "tags": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841" }, { "name": "FEDORA-2014-9308", "refsource": "FEDORA", "tags": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html" }, { "name": "FEDORA-2014-9301", "refsource": "FEDORA", "tags": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2017-01-07T02:59Z", "publishedDate": "2014-01-09T01:55Z" } } }
rhsa-2014_0041
Vulnerability from csaf_redhat
Published
2014-01-21 17:02
Modified
2024-11-22 07:22
Summary
Red Hat Security Advisory: rhev-hypervisor6 security update
Notes
Topic
An updated rhev-hypervisor6 package that fixes multiple security issues is
now available.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization
Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor
is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes
everything necessary to run and manage virtual machines: a subset of the
Red Hat Enterprise Linux operating environment and the Red Hat Enterprise
Virtualization Agent.
Note: Red Hat Enterprise Virtualization Hypervisor is only available for
the Intel 64 and AMD64 architectures with virtualization extensions.
Upgrade Note: If you upgrade Red Hat Enterprise Virtualization Hypervisor
6.4 to version 6.5 through the 3.3 Manager administration portal,
configuration of the previous system appears to be lost when reported in
the TUI. However, this is an issue in the TUI itself, not in the upgrade
process; the configuration of the system is not affected.
A flaw was found in the way NSS handled invalid handshake packets. A remote
attacker could use this flaw to cause a TLS/SSL client using NSS to crash
or, possibly, execute arbitrary code with the privileges of the user
running the application. (CVE-2013-5605)
A flaw was found in the way OpenSSL determined which hashing algorithm to
use when TLS protocol version 1.2 was enabled. This could possibly cause
OpenSSL to use an incorrect hashing algorithm, leading to a crash of an
application using the library. (CVE-2013-6449)
A NULL pointer dereference flaw was found in the way OpenSSL handled
TLS/SSL protocol handshake packets. A specially crafted handshake packet
could cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)
It was discovered that NSS did not reject certificates with incompatible
key usage constraints when validating them while the verifyLog feature was
enabled. An application using the NSS certificate validation API could
accept an invalid certificate. (CVE-2013-5606)
Red Hat would like to thank the Mozilla project for reporting
CVE-2013-5606. Upstream acknowledges Camilo Viecco as the original reporter
of CVE-2013-5606.
This updated package provides updated components that include fixes for
various security issues. These issues have no security impact on Red Hat
Enterprise Virtualization Hypervisor itself, however. The security fixes
included in this update address the following CVE numbers:
CVE-2013-6462 (libXfont issue)
CVE-2013-6629, and CVE-2013-6630 (libjpeg-turbo issues)
CVE-2013-1739, CVE-2013-1741, and CVE-2013-5607 (nss, nspr issues)
CVE-2013-6450 (openssl issue)
CVE-2013-6425 (pixman issue)
Users of the Red Hat Enterprise Virtualization Hypervisor are advised to
upgrade to this updated package, which corrects these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An updated rhev-hypervisor6 package that fixes multiple security issues is\nnow available.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: a subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nUpgrade Note: If you upgrade Red Hat Enterprise Virtualization Hypervisor\n6.4 to version 6.5 through the 3.3 Manager administration portal,\nconfiguration of the previous system appears to be lost when reported in\nthe TUI. However, this is an issue in the TUI itself, not in the upgrade\nprocess; the configuration of the system is not affected.\n\nA flaw was found in the way NSS handled invalid handshake packets. A remote\nattacker could use this flaw to cause a TLS/SSL client using NSS to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2013-5605)\n\nA flaw was found in the way OpenSSL determined which hashing algorithm to\nuse when TLS protocol version 1.2 was enabled. This could possibly cause\nOpenSSL to use an incorrect hashing algorithm, leading to a crash of an\napplication using the library. (CVE-2013-6449)\n\nA NULL pointer dereference flaw was found in the way OpenSSL handled\nTLS/SSL protocol handshake packets. A specially crafted handshake packet\ncould cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)\n\nIt was discovered that NSS did not reject certificates with incompatible\nkey usage constraints when validating them while the verifyLog feature was\nenabled. An application using the NSS certificate validation API could\naccept an invalid certificate. (CVE-2013-5606)\n\nRed Hat would like to thank the Mozilla project for reporting\nCVE-2013-5606. Upstream acknowledges Camilo Viecco as the original reporter\nof CVE-2013-5606.\n\nThis updated package provides updated components that include fixes for\nvarious security issues. These issues have no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however. The security fixes\nincluded in this update address the following CVE numbers:\n\nCVE-2013-6462 (libXfont issue)\n\nCVE-2013-6629, and CVE-2013-6630 (libjpeg-turbo issues)\n\nCVE-2013-1739, CVE-2013-1741, and CVE-2013-5607 (nss, nspr issues)\n\nCVE-2013-6450 (openssl issue)\n\nCVE-2013-6425 (pixman issue)\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which corrects these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2014:0041", "url": "https://access.redhat.com/errata/RHSA-2014:0041" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html", "url": "https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html" }, { "category": "external", "summary": "1005766", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1005766" }, { "category": "external", "summary": "1030807", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1030807" }, { "category": "external", "summary": "1031457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1031457" }, { "category": "external", "summary": "1045363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1045363" }, { "category": "external", "summary": "1049058", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0041.json" } ], "title": "Red Hat Security Advisory: rhev-hypervisor6 security update", "tracking": { "current_release_date": "2024-11-22T07:22:03+00:00", "generator": { "date": "2024-11-22T07:22:03+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2014:0041", "initial_release_date": "2014-01-21T17:02:59+00:00", "revision_history": [ { "date": "2014-01-21T17:02:59+00:00", "number": "1", "summary": "Initial version" }, { "date": "2014-01-21T17:02:59+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T07:22:03+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "RHEV Hypervisor for RHEL-6", "product": { "name": "RHEV Hypervisor for RHEL-6", "product_id": "6Server-RHEV-Hypervisor", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::hypervisor" } } } ], "category": "product_family", "name": "Red Hat Virtualization" }, { "branches": [ { "category": "product_version", "name": "rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch", "product": { "name": "rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch", "product_id": "rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhev-hypervisor6@6.5-20140112.0.el6ev?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch as a component of RHEV Hypervisor for RHEL-6", "product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" }, "product_reference": "rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch", "relates_to_product_reference": "6Server-RHEV-Hypervisor" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-4353", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2014-01-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1049058" } ], "notes": [ { "category": "description", "text": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: client NULL dereference crash on malformed handshake packets", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5 and earlier.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-4353" }, { "category": "external", "summary": "RHBZ#1049058", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-4353", "url": "https://www.cve.org/CVERecord?id=CVE-2013-4353" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353" } ], "release_date": "2014-01-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-21T17:02:59+00:00", "details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html", "product_ids": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0041" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "openssl: client NULL dereference crash on malformed handshake packets" }, { "cve": "CVE-2013-5605", "discovery_date": "2013-11-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1030807" } ], "notes": [ { "category": "description", "text": "Mozilla Network Security Services (NSS) 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets.", "title": "Vulnerability description" }, { "category": "summary", "text": "nss: Null_Cipher() does not respect maxOutputLen (MFSA 2013-103)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5605" }, { "category": "external", "summary": "RHBZ#1030807", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1030807" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5605", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5605" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5605", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5605" } ], "release_date": "2013-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-21T17:02:59+00:00", "details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html", "product_ids": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0041" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "nss: Null_Cipher() does not respect maxOutputLen (MFSA 2013-103)" }, { "acknowledgments": [ { "names": [ "Mozilla project" ] }, { "names": [ "Camilo Viecco" ], "summary": "Acknowledged by upstream." } ], "cve": "CVE-2013-5606", "discovery_date": "2013-11-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1031457" } ], "notes": [ { "category": "description", "text": "The CERT_VerifyCert function in lib/certhigh/certvfy.c in Mozilla Network Security Services (NSS) 3.15 before 3.15.3 provides an unexpected return value for an incompatible key-usage certificate when the CERTVerifyLog argument is valid, which might allow remote attackers to bypass intended access restrictions via a crafted certificate.", "title": "Vulnerability description" }, { "category": "summary", "text": "nss: CERT_VerifyCert returns SECSuccess (saying certificate is good) even for bad certificates (MFSA 2013-103)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5606" }, { "category": "external", "summary": "RHBZ#1031457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1031457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5606", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5606" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5606", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5606" }, { "category": "external", "summary": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html", "url": "http://www.mozilla.org/security/announce/2013/mfsa2013-103.html" } ], "release_date": "2013-11-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-21T17:02:59+00:00", "details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html", "product_ids": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0041" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "nss: CERT_VerifyCert returns SECSuccess (saying certificate is good) even for bad certificates (MFSA 2013-103)" }, { "cve": "CVE-2013-6449", "discovery_date": "2013-12-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1045363" } ], "notes": [ { "category": "description", "text": "The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: crash when using TLS 1.2 caused by use of incorrect hash algorithm", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5 and earlier.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-6449" }, { "category": "external", "summary": "RHBZ#1045363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1045363" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-6449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-6449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-6449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-6449" } ], "release_date": "2013-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-21T17:02:59+00:00", "details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html", "product_ids": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0041" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.5-20140112.0.el6ev.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "openssl: crash when using TLS 1.2 caused by use of incorrect hash algorithm" } ] }
rhsa-2014_0416
Vulnerability from csaf_redhat
Published
2014-04-17 12:23
Modified
2024-11-14 14:28
Summary
Red Hat Security Advisory: rhevm-spice-client security update
Notes
Topic
Updated rhevm-spice-client packages that fix multiple security issues are
now available for Red Hat Enterprise Virtualization Manager 3.
The Red Hat Security Response Team has rated this update as having
Important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Red Hat Enterprise Virtualization Manager provides access to virtual
machines using SPICE. These SPICE client packages provide the SPICE client
and usbclerk service for both Windows 32-bit operating systems and Windows
64-bit operating systems.
The rhevm-spice-client package includes the mingw-virt-viewer Windows SPICE
client. OpenSSL, a general purpose cryptography library with a TLS
implementation, is bundled with mingw-virt-viewer. The mingw-virt-viewer
package has been updated to correct the following issues:
An information disclosure flaw was found in the way OpenSSL handled TLS and
DTLS Heartbeat Extension packets. A malicious TLS or DTLS client or server
could send a specially crafted TLS or DTLS Heartbeat packet to disclose a
limited portion of memory per request from a connected client or server.
Note that the disclosed portions of memory could potentially include
sensitive information such as private keys. (CVE-2014-0160)
It was discovered that OpenSSL leaked timing information when decrypting
TLS/SSL and DTLS protocol encrypted records when CBC-mode cipher suites
were used. A remote attacker could possibly use this flaw to retrieve plain
text from the encrypted packets by using a TLS/SSL or DTLS server as a
padding oracle. (CVE-2013-0169)
A NULL pointer dereference flaw was found in the way OpenSSL handled
TLS/SSL protocol handshake packets. A specially crafted handshake packet
could cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)
It was discovered that the TLS/SSL protocol could leak information about
plain text when optional compression was used. An attacker able to control
part of the plain text sent over an encrypted TLS/SSL connection could
possibly use this flaw to recover other portions of the plain text.
(CVE-2012-4929)
Red Hat would like to thank the OpenSSL project for reporting
CVE-2014-0160. Upstream acknowledges Neel Mehta of Google Security as the
original reporter.
The updated mingw-virt-viewer Windows SPICE client further includes OpenSSL
security fixes that have no security impact on mingw-virt-viewer itself.
The security fixes included in this update address the following CVE
numbers:
CVE-2013-6449, CVE-2013-6450, CVE-2012-2686, and CVE-2013-0166
All Red Hat Enterprise Virtualization Manager users are advised to upgrade
to these updated packages, which address these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated rhevm-spice-client packages that fix multiple security issues are\nnow available for Red Hat Enterprise Virtualization Manager 3.\n\nThe Red Hat Security Response Team has rated this update as having\nImportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Red Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems.\n\nThe rhevm-spice-client package includes the mingw-virt-viewer Windows SPICE\nclient. OpenSSL, a general purpose cryptography library with a TLS\nimplementation, is bundled with mingw-virt-viewer. The mingw-virt-viewer\npackage has been updated to correct the following issues:\n\nAn information disclosure flaw was found in the way OpenSSL handled TLS and\nDTLS Heartbeat Extension packets. A malicious TLS or DTLS client or server\ncould send a specially crafted TLS or DTLS Heartbeat packet to disclose a\nlimited portion of memory per request from a connected client or server.\nNote that the disclosed portions of memory could potentially include\nsensitive information such as private keys. (CVE-2014-0160)\n\nIt was discovered that OpenSSL leaked timing information when decrypting\nTLS/SSL and DTLS protocol encrypted records when CBC-mode cipher suites\nwere used. A remote attacker could possibly use this flaw to retrieve plain\ntext from the encrypted packets by using a TLS/SSL or DTLS server as a\npadding oracle. (CVE-2013-0169)\n\nA NULL pointer dereference flaw was found in the way OpenSSL handled\nTLS/SSL protocol handshake packets. A specially crafted handshake packet\ncould cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)\n\nIt was discovered that the TLS/SSL protocol could leak information about\nplain text when optional compression was used. An attacker able to control\npart of the plain text sent over an encrypted TLS/SSL connection could\npossibly use this flaw to recover other portions of the plain text.\n(CVE-2012-4929)\n\nRed Hat would like to thank the OpenSSL project for reporting\nCVE-2014-0160. Upstream acknowledges Neel Mehta of Google Security as the\noriginal reporter.\n\nThe updated mingw-virt-viewer Windows SPICE client further includes OpenSSL\nsecurity fixes that have no security impact on mingw-virt-viewer itself.\nThe security fixes included in this update address the following CVE\nnumbers:\n\nCVE-2013-6449, CVE-2013-6450, CVE-2012-2686, and CVE-2013-0166\n\nAll Red Hat Enterprise Virtualization Manager users are advised to upgrade\nto these updated packages, which address these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2014:0416", "url": "https://access.redhat.com/errata/RHSA-2014:0416" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "857051", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=857051" }, { "category": "external", "summary": "907589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907589" }, { "category": "external", "summary": "1049058", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "category": "external", "summary": "1084875", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1084875" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0416.json" } ], "title": "Red Hat Security Advisory: rhevm-spice-client security update", "tracking": { "current_release_date": "2024-11-14T14:28:00+00:00", "generator": { "date": "2024-11-14T14:28:00+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2014:0416", "initial_release_date": "2014-04-17T12:23:34+00:00", "revision_history": [ { "date": "2014-04-17T12:23:34+00:00", "number": "1", "summary": "Initial version" }, { "date": "2014-04-17T12:23:34+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T14:28:00+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "RHEV-M 3.3", "product": { "name": "RHEV-M 3.3", "product_id": "6Server-RHEV-S-3.3", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhev_manager:3" } } } ], "category": "product_family", "name": "Red Hat Virtualization" }, { "branches": [ { "category": "product_version", "name": "rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch", "product": { "name": "rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch", "product_id": "rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-msi@3.3-12.el6_5?arch=noarch" } } }, { "category": "product_version", "name": "rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "product": { "name": "rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "product_id": "rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-cab@3.3-12.el6_5?arch=noarch" } } }, { "category": "product_version", "name": "rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "product": { "name": "rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "product_id": "rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-msi@3.3-12.el6_5?arch=noarch" } } }, { "category": "product_version", "name": "rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "product": { "name": "rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "product_id": "rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-cab@3.3-12.el6_5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "rhevm-spice-client-0:3.3-12.el6_5.src", "product": { "name": "rhevm-spice-client-0:3.3-12.el6_5.src", "product_id": "rhevm-spice-client-0:3.3-12.el6_5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client@3.3-12.el6_5?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-0:3.3-12.el6_5.src as a component of RHEV-M 3.3", "product_id": "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src" }, "product_reference": "rhevm-spice-client-0:3.3-12.el6_5.src", "relates_to_product_reference": "6Server-RHEV-S-3.3" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch as a component of RHEV-M 3.3", "product_id": "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch" }, "product_reference": "rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.3" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch as a component of RHEV-M 3.3", "product_id": "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch" }, "product_reference": "rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.3" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch as a component of RHEV-M 3.3", "product_id": "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch" }, "product_reference": "rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.3" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch as a component of RHEV-M 3.3", "product_id": "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" }, "product_reference": "rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.3" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-4929", "discovery_date": "2012-09-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "857051" } ], "notes": [ { "category": "description", "text": "The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a \"CRIME\" attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "SSL/TLS CRIME attack against HTTPS", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4929" }, { "category": "external", "summary": "RHBZ#857051", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=857051" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4929", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4929" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4929", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4929" } ], "release_date": "2012-09-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T12:23:34+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0416" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "SSL/TLS CRIME attack against HTTPS" }, { "cve": "CVE-2013-0169", "discovery_date": "2013-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907589" } ], "notes": [ { "category": "description", "text": "The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "SSL/TLS: CBC padding timing attack (lucky-13)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0169" }, { "category": "external", "summary": "RHBZ#907589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907589" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0169", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0169" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0169", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0169" }, { "category": "external", "summary": "http://www.isg.rhul.ac.uk/tls/", "url": "http://www.isg.rhul.ac.uk/tls/" }, { "category": "external", "summary": "http://www.openssl.org/news/secadv_20130205.txt", "url": "http://www.openssl.org/news/secadv_20130205.txt" }, { "category": "external", "summary": "https://polarssl.org/tech-updates/releases/polarssl-1.2.5-released", "url": "https://polarssl.org/tech-updates/releases/polarssl-1.2.5-released" } ], "release_date": "2013-02-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T12:23:34+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0416" }, { "category": "workaround", "details": "On OpenShift Container Platform 3.11 it\u0027s possible to edit the list of cipher suites offered by the router when performing \u0027edge\u0027, or \u0027re-encrypt\u0027 TLS modes. Please follow the documentation [1], and [2] to remove the vulnerable CBC ciphers use the modern, or intermediate cipher suites outlined by Mozilla instead [3]. In \u0027passthrough\u0027 mode TLS termination occurs in the application so that is another way to mitigate the vulnerability.\n[1] https://docs.openshift.com/container-platform/3.11/install_config/router/customized_haproxy_router.html#obtaining-router-configuration-template\n[2] https://docs.openshift.com/container-platform/3.11/install_config/router/customized_haproxy_router.html#using-configmap-replace-template\n[3] https://wiki.mozilla.org/Security/Server_Side_TLS", "product_ids": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "SSL/TLS: CBC padding timing attack (lucky-13)" }, { "cve": "CVE-2013-4353", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2014-01-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1049058" } ], "notes": [ { "category": "description", "text": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: client NULL dereference crash on malformed handshake packets", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5 and earlier.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-4353" }, { "category": "external", "summary": "RHBZ#1049058", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-4353", "url": "https://www.cve.org/CVERecord?id=CVE-2013-4353" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353" } ], "release_date": "2014-01-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T12:23:34+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0416" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "openssl: client NULL dereference crash on malformed handshake packets" }, { "acknowledgments": [ { "names": [ "OpenSSL project" ] }, { "names": [ "Neel Mehta" ], "organization": "Google Security", "summary": "Acknowledged by upstream." } ], "cve": "CVE-2014-0160", "cwe": { "id": "CWE-201", "name": "Insertion of Sensitive Information Into Sent Data" }, "discovery_date": "2014-04-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1084875" } ], "notes": [ { "category": "description", "text": "An information disclosure flaw was found in the way OpenSSL handled TLS and DTLS Heartbeat Extension packets. A malicious TLS or DTLS client or server could send a specially crafted TLS or DTLS Heartbeat packet to disclose a limited portion of memory per request from a connected client or server. Note that the disclosed portions of memory could potentially include sensitive information such as private keys.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: information disclosure in handling of TLS heartbeat extension packets", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6.4 and earlier, Red Hat JBoss Enterprise Application Platform 5 and 6, and Red Hat JBoss Web Server 1 and 2. This issue does affect Red Hat Enterprise Linux 7 Beta, Red Hat Enterprise Linux 6.5, Red Hat Enterprise Virtualization Hypervisor 6.5, and Red Hat Storage 2.1, which provided openssl 1.0.1e. Errata have been released to correct this issue.\n\nAdditional information can be found in the Red Hat Knowledgebase article: https://access.redhat.com/site/announcements/781953", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0160" }, { "category": "external", "summary": "RHBZ#1084875", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1084875" }, { "category": "external", "summary": "RHSB-heartbleed", "url": "https://access.redhat.com/security/vulnerabilities/heartbleed" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0160", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0160" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0160", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0160" }, { "category": "external", "summary": "http://www.openssl.org/news/secadv_20140407.txt", "url": "http://www.openssl.org/news/secadv_20140407.txt" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2014-04-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T12:23:34+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0416" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.3:rhevm-spice-client-0:3.3-12.el6_5.src", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x64-msi-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-cab-0:3.3-12.el6_5.noarch", "6Server-RHEV-S-3.3:rhevm-spice-client-x86-msi-0:3.3-12.el6_5.noarch" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-05-04T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Important" } ], "title": "openssl: information disclosure in handling of TLS heartbeat extension packets" } ] }
rhsa-2014_0015
Vulnerability from csaf_redhat
Published
2014-01-08 18:16
Modified
2024-11-22 07:22
Summary
Red Hat Security Advisory: openssl security update
Notes
Topic
Updated openssl packages that fix three security issues are now available
for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a
full-strength, general purpose cryptography library.
A flaw was found in the way OpenSSL determined which hashing algorithm to
use when TLS protocol version 1.2 was enabled. This could possibly cause
OpenSSL to use an incorrect hashing algorithm, leading to a crash of an
application using the library. (CVE-2013-6449)
It was discovered that the Datagram Transport Layer Security (DTLS)
protocol implementation in OpenSSL did not properly maintain encryption and
digest contexts during renegotiation. A lost or discarded renegotiation
handshake packet could cause a DTLS client or server using OpenSSL to
crash. (CVE-2013-6450)
A NULL pointer dereference flaw was found in the way OpenSSL handled
TLS/SSL protocol handshake packets. A specially crafted handshake packet
could cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)
All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library must be restarted, or
the system rebooted.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated openssl packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)\nand Transport Layer Security (TLS v1) protocols, as well as a\nfull-strength, general purpose cryptography library.\n\nA flaw was found in the way OpenSSL determined which hashing algorithm to\nuse when TLS protocol version 1.2 was enabled. This could possibly cause\nOpenSSL to use an incorrect hashing algorithm, leading to a crash of an\napplication using the library. (CVE-2013-6449)\n\nIt was discovered that the Datagram Transport Layer Security (DTLS)\nprotocol implementation in OpenSSL did not properly maintain encryption and\ndigest contexts during renegotiation. A lost or discarded renegotiation\nhandshake packet could cause a DTLS client or server using OpenSSL to\ncrash. (CVE-2013-6450)\n\nA NULL pointer dereference flaw was found in the way OpenSSL handled\nTLS/SSL protocol handshake packets. A specially crafted handshake packet\ncould cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)\n\nAll OpenSSL users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. For the update to take\neffect, all services linked to the OpenSSL library must be restarted, or\nthe system rebooted.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2014:0015", "url": "https://access.redhat.com/errata/RHSA-2014:0015" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "1045363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1045363" }, { "category": "external", "summary": "1047840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1047840" }, { "category": "external", "summary": "1049058", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0015.json" } ], "title": "Red Hat Security Advisory: openssl security update", "tracking": { "current_release_date": "2024-11-22T07:22:07+00:00", "generator": { "date": "2024-11-22T07:22:07+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2014:0015", "initial_release_date": "2014-01-08T18:16:14+00:00", "revision_history": [ { "date": "2014-01-08T18:16:14+00:00", "number": "1", "summary": "Initial version" }, { "date": "2014-01-08T18:16:14+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T07:22:07+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.src", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.src", "product_id": "openssl-0:1.0.1e-16.el6_5.4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "product": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "product_id": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.4?arch=i686" } } }, { "category": "product_version", "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "product": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.4?arch=i686" } } }, { "category": "product_version", "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "product": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "product_id": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.4?arch=i686" } } }, { "category": "product_version", "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "product": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "product_id": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.4?arch=i686" } } }, { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.i686", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686", "product_id": "openssl-0:1.0.1e-16.el6_5.4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "product": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "product_id": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "product": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "product_id": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "product": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "product_id": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "product": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "product_id": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "product": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "product_id": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.4?arch=s390x" } } }, { "category": "product_version", "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "product": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "product_id": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.4?arch=s390x" } } }, { "category": "product_version", "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "product": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.4?arch=s390x" } } }, { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.s390x", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x", "product_id": "openssl-0:1.0.1e-16.el6_5.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=s390x" } } }, { "category": "product_version", "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "product": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "product_id": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "product": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "product_id": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.4?arch=ppc64" } } }, { "category": "product_version", "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "product": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "product_id": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.4?arch=ppc64" } } }, { "category": "product_version", "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "product": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.4?arch=ppc64" } } }, { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "product_id": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=ppc64" } } }, { "category": "product_version", "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "product": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "product_id": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.4?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.s390", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390", "product_id": "openssl-0:1.0.1e-16.el6_5.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=s390" } } }, { "category": "product_version", "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "product": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "product_id": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.4?arch=s390" } } }, { "category": "product_version", "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "product": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.4?arch=s390" } } } ], "category": "architecture", "name": "s390" }, { "branches": [ { "category": "product_version", "name": "openssl-0:1.0.1e-16.el6_5.4.ppc", "product": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc", "product_id": "openssl-0:1.0.1e-16.el6_5.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.4?arch=ppc" } } }, { "category": "product_version", "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "product": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "product_id": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.4?arch=ppc" } } }, { "category": "product_version", "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "product": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.4?arch=ppc" } } } ], "category": "architecture", "name": "ppc" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Client-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Server-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.src", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.i686", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.s390x", "relates_to_product_reference": "6Workstation-optional-6.5.z" }, { "category": "default_component_of", "full_product_name": { "name": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" }, "product_reference": "openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.5.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-4353", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2014-01-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1049058" } ], "notes": [ { "category": "description", "text": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: client NULL dereference crash on malformed handshake packets", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5 and earlier.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-4353" }, { "category": "external", "summary": "RHBZ#1049058", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-4353", "url": "https://www.cve.org/CVERecord?id=CVE-2013-4353" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353" } ], "release_date": "2014-01-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-08T18:16:14+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0015" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "openssl: client NULL dereference crash on malformed handshake packets" }, { "cve": "CVE-2013-6449", "discovery_date": "2013-12-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1045363" } ], "notes": [ { "category": "description", "text": "The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: crash when using TLS 1.2 caused by use of incorrect hash algorithm", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5 and earlier.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-6449" }, { "category": "external", "summary": "RHBZ#1045363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1045363" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-6449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-6449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-6449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-6449" } ], "release_date": "2013-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-08T18:16:14+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0015" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "openssl: crash when using TLS 1.2 caused by use of incorrect hash algorithm" }, { "cve": "CVE-2013-6450", "discovery_date": "2014-01-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1047840" } ], "notes": [ { "category": "description", "text": "The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: crash in DTLS renegotiation after packet loss", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 5 and earlier.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-6450" }, { "category": "external", "summary": "RHBZ#1047840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1047840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-6450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-6450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-6450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-6450" } ], "release_date": "2013-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-01-08T18:16:14+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0015" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.src", "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.4.x86_64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.i686", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.ppc64", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.s390x", "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "openssl: crash in DTLS renegotiation after packet loss" } ] }
ghsa-3r93-c4x2-hj85
Vulnerability from github
Published
2022-05-17 03:07
Modified
2022-05-17 03:07
Details
The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.
{ "affected": [], "aliases": [ "CVE-2013-4353" ], "database_specific": { "cwe_ids": [ "CWE-20" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2014-01-09T01:55:00Z", "severity": "MODERATE" }, "details": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.", "id": "GHSA-3r93-c4x2-hj85", "modified": "2022-05-17T03:07:11Z", "published": "2022-05-17T03:07:11Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4353" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049058" }, { "type": "WEB", "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable" }, { "type": "WEB", "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2014-0041.html" }, { "type": "WEB", "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841" }, { "type": "WEB", "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843" }, { "type": "WEB", "url": "http://www.debian.org/security/2014/dsa-2837" }, { "type": "WEB", "url": "http://www.openssl.org/news/vulnerabilities.html" }, { "type": "WEB", "url": "http://www.splunk.com/view/SP-CAAAMB3" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-2079-1" } ], "schema_version": "1.4.0", "severity": [] }
wid-sec-w-2023-0503
Vulnerability from csaf_certbund
Published
2014-01-06 23:00
Modified
2023-02-27 23:00
Summary
OpenSSL: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
OpenSSL ist eine im Quelltext frei verfügbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
{ "document": { "aggregate_severity": { "text": "mittel" }, "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "de-DE", "notes": [ { "category": "legal_disclaimer", "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen." }, { "category": "description", "text": "OpenSSL ist eine im Quelltext frei verf\u00fcgbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.", "title": "Produktbeschreibung" }, { "category": "summary", "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.", "title": "Angriff" }, { "category": "general", "text": "- UNIX\n- Linux\n- Windows", "title": "Betroffene Betriebssysteme" } ], "publisher": { "category": "other", "contact_details": "csaf-provider@cert-bund.de", "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik", "namespace": "https://www.bsi.bund.de" }, "references": [ { "category": "self", "summary": "WID-SEC-W-2023-0503 - CSAF Version", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2014/wid-sec-w-2023-0503.json" }, { "category": "self", "summary": "WID-SEC-2023-0503 - Portal Version", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0503" }, { "category": "external", "summary": "IBM Security Bulletin 690129 vom 2023-02-28", "url": "https://www.ibm.com/support/pages/node/690129" }, { "category": "external", "summary": "Schwachstellenbeschreibung auf openssl.org vom 2014-01-06", "url": "http://www.openssl.org/news/vulnerabilities.html#2013-4353" }, { "category": "external", "summary": "Debian Security Advisory DSA-2837-1 vom 2014-01-07", "url": "http://www.debian.org/security/2014/dsa-2837" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2014:0015-1 vom 2014-01-08", "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "category": "external", "summary": "Ubuntu Security Notice USN-2079-1 vom 2014-01-09", "url": "http://www.ubuntu.com/usn/usn-2079-1/" }, { "category": "external", "summary": "FreeBSD Security Advisory FreeBSD-SA-14:03.openssl vom 2014-01-14", "url": "http://security.freebsd.org/advisories/FreeBSD-SA-14:03.openssl.asc" }, { "category": "external", "summary": "IBM SECURITY ADVISORY vom 2014-02-25", "url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory6.asc" }, { "category": "external", "summary": "F5 Support #sol15180 vom 2014-04-17", "url": "http://support.f5.com/kb/en-us/solutions/public/15000/100/sol15180.html?ref=rss" }, { "category": "external", "summary": "HP SECURITY BULLETIN c04239372 vom 2014-04-13", "url": "https://h20564.www2.hp.com/portal/site/hpsc/public;/kb/docDisplay?docId=emr_na-c04239372" }, { "category": "external", "summary": "HP SECURITY BULLETIN c04239372 vom 2014-04-13 vom 2014-05-13", "url": "https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay\u0026spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04239372-4%257CdocLocale%253Den_US%257CcalledBy%253DSearch_Result\u0026javax.portlet.begCacheTok=com.vignette.cachetoken\u0026javax.portlet.endCacheTok=com.vignette.cachetoken" }, { "category": "external", "summary": "Oracle Third Party Vulnerability Resolution Blog vom 2014-06-23", "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl3" }, { "category": "external", "summary": "Oracle Third Party Vulnerability Resolution Blog vom 2014-07-31", "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl4" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2019-4581 vom 2019-03-13", "url": "http://linux.oracle.com/errata/ELSA-2019-4581.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2019-4747 vom 2019-08-16", "url": "http://linux.oracle.com/errata/ELSA-2019-4747.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2021-9150 vom 2021-04-01", "url": "https://linux.oracle.com/errata/ELSA-2021-9150.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2022-9272 vom 2022-04-08", "url": "https://linux.oracle.com/errata/ELSA-2022-9272.html" } ], "source_lang": "en-US", "title": "OpenSSL: Schwachstelle erm\u00f6glicht Denial of Service", "tracking": { "current_release_date": "2023-02-27T23:00:00.000+00:00", "generator": { "date": "2024-02-15T17:16:55.912+00:00", "engine": { "name": "BSI-WID", "version": "1.3.0" } }, "id": "WID-SEC-W-2023-0503", "initial_release_date": "2014-01-06T23:00:00.000+00:00", "revision_history": [ { "date": "2014-01-06T23:00:00.000+00:00", "number": "1", "summary": "Initial Release" }, { "date": "2014-01-06T23:00:00.000+00:00", "number": "2", "summary": "Version nicht vorhanden" }, { "date": "2014-01-07T23:00:00.000+00:00", "number": "3", "summary": "New remediations available" }, { "date": "2014-01-07T23:00:00.000+00:00", "number": "4", "summary": "Version nicht vorhanden" }, { "date": "2014-01-08T23:00:00.000+00:00", "number": "5", "summary": "New remediations available" }, { "date": "2014-01-08T23:00:00.000+00:00", "number": "6", "summary": "Version nicht vorhanden" }, { "date": "2014-01-08T23:00:00.000+00:00", "number": "7", "summary": "Version nicht vorhanden" }, { "date": "2014-01-09T23:00:00.000+00:00", "number": "8", "summary": "New remediations available" }, { "date": "2014-01-09T23:00:00.000+00:00", "number": "9", "summary": "Version nicht vorhanden" }, { "date": "2014-01-14T23:00:00.000+00:00", "number": "10", "summary": "New remediations available" }, { "date": "2014-01-14T23:00:00.000+00:00", "number": "11", "summary": "Version nicht vorhanden" }, { "date": "2014-02-25T23:00:00.000+00:00", "number": "12", "summary": "New remediations available" }, { "date": "2014-04-21T22:00:00.000+00:00", "number": "13", "summary": "added F5 ARX" }, { "date": "2014-04-21T22:00:00.000+00:00", "number": "14", "summary": "Version nicht vorhanden" }, { "date": "2014-04-21T22:00:00.000+00:00", "number": "15", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "16", "summary": "New remediations available" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "17", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "18", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "19", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "20", "summary": "Version nicht vorhanden" }, { "date": "2014-07-06T22:00:00.000+00:00", "number": "21", "summary": "New remediations available" }, { "date": "2014-07-06T22:00:00.000+00:00", "number": "22", "summary": "Version nicht vorhanden" }, { "date": "2014-07-31T22:00:00.000+00:00", "number": "23", "summary": "New remediations available" }, { "date": "2019-03-13T23:00:00.000+00:00", "number": "24", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2019-08-18T22:00:00.000+00:00", "number": "25", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2021-03-31T22:00:00.000+00:00", "number": "26", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2022-04-10T22:00:00.000+00:00", "number": "27", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2023-02-27T23:00:00.000+00:00", "number": "28", "summary": "Neue Updates von IBM aufgenommen" } ], "status": "final", "version": "28" } }, "product_tree": { "branches": [ { "branches": [ { "category": "product_name", "name": "Debian Linux Wheezy (7.0)", "product": { "name": "Debian Linux Wheezy (7.0)", "product_id": "T001572", "product_identification_helper": { "cpe": "cpe:/o:debian:debian_linux:7.0" } } } ], "category": "vendor", "name": "Debian" }, { "branches": [ { "category": "product_name", "name": "FreeBSD Project FreeBSD OS", "product": { "name": "FreeBSD Project FreeBSD OS", "product_id": "4035", "product_identification_helper": { "cpe": "cpe:/o:freebsd:freebsd:-" } } } ], "category": "vendor", "name": "FreeBSD Project" }, { "branches": [ { "category": "product_name", "name": "HP System Management Homepage", "product": { "name": "HP System Management Homepage", "product_id": "4995", "product_identification_helper": { "cpe": "cpe:/a:hp:system_management_homepage:-" } } } ], "category": "vendor", "name": "HPE" }, { "branches": [ { "branches": [ { "category": "product_name", "name": "IBM AIX 7.1", "product": { "name": "IBM AIX 7.1", "product_id": "153340", "product_identification_helper": { "cpe": "cpe:/o:ibm:aix:7.1" } } }, { "category": "product_name", "name": "IBM AIX 5.3", "product": { "name": "IBM AIX 5.3", "product_id": "30418", "product_identification_helper": { "cpe": "cpe:/o:ibm:aix:5.3" } } }, { "category": "product_name", "name": "IBM AIX 6.1", "product": { "name": "IBM AIX 6.1", "product_id": "73182", "product_identification_helper": { "cpe": "cpe:/o:ibm:aix:6.1" } } } ], "category": "product_name", "name": "AIX" }, { "branches": [ { "category": "product_name", "name": "IBM FlashSystem 710", "product": { "name": "IBM FlashSystem 710", "product_id": "T026541", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:710" } } }, { "category": "product_name", "name": "IBM FlashSystem 810", "product": { "name": "IBM FlashSystem 810", "product_id": "T026542", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:810" } } }, { "category": "product_name", "name": "IBM FlashSystem 720", "product": { "name": "IBM FlashSystem 720", "product_id": "T026543", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:720" } } }, { "category": "product_name", "name": "IBM FlashSystem 820", "product": { "name": "IBM FlashSystem 820", "product_id": "T026544", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:820" } } } ], "category": "product_name", "name": "FlashSystem" } ], "category": "vendor", "name": "IBM" }, { "branches": [ { "category": "product_name", "name": "Open Source OpenSSL 1.0.1 \u003c= 1.0.1e", "product": { "name": "Open Source OpenSSL 1.0.1 \u003c= 1.0.1e", "product_id": "228244", "product_identification_helper": { "cpe": "cpe:/a:openssl:openssl:1.0.1e" } } } ], "category": "vendor", "name": "Open Source" }, { "branches": [ { "category": "product_name", "name": "Oracle Linux", "product": { "name": "Oracle Linux", "product_id": "T004914", "product_identification_helper": { "cpe": "cpe:/o:oracle:linux:-" } } }, { "category": "product_name", "name": "Oracle Solaris 11.1", "product": { "name": "Oracle Solaris 11.1", "product_id": "T001955", "product_identification_helper": { "cpe": "cpe:/a:oracle:solaris:11.1" } } } ], "category": "vendor", "name": "Oracle" }, { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux", "product": { "name": "Red Hat Enterprise Linux", "product_id": "67646", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:-" } } } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "category": "product_name", "name": "Ubuntu Linux", "product": { "name": "Ubuntu Linux", "product_id": "T000126", "product_identification_helper": { "cpe": "cpe:/o:canonical:ubuntu_linux:-" } } } ], "category": "vendor", "name": "Ubuntu" }, { "branches": [ { "category": "product_name", "name": "F5 ARX 6.0.0 - 6.4.0", "product": { "name": "F5 ARX 6.0.0 - 6.4.0", "product_id": "T002411", "product_identification_helper": { "cpe": "cpe:/a:f5:arx:6.4.0" } } } ], "category": "vendor", "name": "f5" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-4353", "notes": [ { "category": "description", "text": "In OpenSSL besteht eine Denial of Service Schwachstelle. Diese Schwachstelle wird durch einen Fehler im Zusammenhang mit einem NULL-Zeiger w\u00e4hrend eines speziell manipulierten TLS Handshake verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren." } ], "product_status": { "known_affected": [ "153340", "67646", "4035", "T004914", "73182", "T001955", "T000126", "T026544", "4995", "T026543", "30418", "T001572", "T026542", "T026541" ], "last_affected": [ "228244", "T002411" ] }, "release_date": "2014-01-06T23:00:00Z", "title": "CVE-2013-4353" } ] }
WID-SEC-W-2023-0503
Vulnerability from csaf_certbund
Published
2014-01-06 23:00
Modified
2023-02-27 23:00
Summary
OpenSSL: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
OpenSSL ist eine im Quelltext frei verfügbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
{ "document": { "aggregate_severity": { "text": "mittel" }, "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "de-DE", "notes": [ { "category": "legal_disclaimer", "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen." }, { "category": "description", "text": "OpenSSL ist eine im Quelltext frei verf\u00fcgbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.", "title": "Produktbeschreibung" }, { "category": "summary", "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.", "title": "Angriff" }, { "category": "general", "text": "- UNIX\n- Linux\n- Windows", "title": "Betroffene Betriebssysteme" } ], "publisher": { "category": "other", "contact_details": "csaf-provider@cert-bund.de", "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik", "namespace": "https://www.bsi.bund.de" }, "references": [ { "category": "self", "summary": "WID-SEC-W-2023-0503 - CSAF Version", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2014/wid-sec-w-2023-0503.json" }, { "category": "self", "summary": "WID-SEC-2023-0503 - Portal Version", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0503" }, { "category": "external", "summary": "IBM Security Bulletin 690129 vom 2023-02-28", "url": "https://www.ibm.com/support/pages/node/690129" }, { "category": "external", "summary": "Schwachstellenbeschreibung auf openssl.org vom 2014-01-06", "url": "http://www.openssl.org/news/vulnerabilities.html#2013-4353" }, { "category": "external", "summary": "Debian Security Advisory DSA-2837-1 vom 2014-01-07", "url": "http://www.debian.org/security/2014/dsa-2837" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2014:0015-1 vom 2014-01-08", "url": "http://rhn.redhat.com/errata/RHSA-2014-0015.html" }, { "category": "external", "summary": "Ubuntu Security Notice USN-2079-1 vom 2014-01-09", "url": "http://www.ubuntu.com/usn/usn-2079-1/" }, { "category": "external", "summary": "FreeBSD Security Advisory FreeBSD-SA-14:03.openssl vom 2014-01-14", "url": "http://security.freebsd.org/advisories/FreeBSD-SA-14:03.openssl.asc" }, { "category": "external", "summary": "IBM SECURITY ADVISORY vom 2014-02-25", "url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory6.asc" }, { "category": "external", "summary": "F5 Support #sol15180 vom 2014-04-17", "url": "http://support.f5.com/kb/en-us/solutions/public/15000/100/sol15180.html?ref=rss" }, { "category": "external", "summary": "HP SECURITY BULLETIN c04239372 vom 2014-04-13", "url": "https://h20564.www2.hp.com/portal/site/hpsc/public;/kb/docDisplay?docId=emr_na-c04239372" }, { "category": "external", "summary": "HP SECURITY BULLETIN c04239372 vom 2014-04-13 vom 2014-05-13", "url": "https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay\u0026spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04239372-4%257CdocLocale%253Den_US%257CcalledBy%253DSearch_Result\u0026javax.portlet.begCacheTok=com.vignette.cachetoken\u0026javax.portlet.endCacheTok=com.vignette.cachetoken" }, { "category": "external", "summary": "Oracle Third Party Vulnerability Resolution Blog vom 2014-06-23", "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl3" }, { "category": "external", "summary": "Oracle Third Party Vulnerability Resolution Blog vom 2014-07-31", "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl4" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2019-4581 vom 2019-03-13", "url": "http://linux.oracle.com/errata/ELSA-2019-4581.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2019-4747 vom 2019-08-16", "url": "http://linux.oracle.com/errata/ELSA-2019-4747.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2021-9150 vom 2021-04-01", "url": "https://linux.oracle.com/errata/ELSA-2021-9150.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2022-9272 vom 2022-04-08", "url": "https://linux.oracle.com/errata/ELSA-2022-9272.html" } ], "source_lang": "en-US", "title": "OpenSSL: Schwachstelle erm\u00f6glicht Denial of Service", "tracking": { "current_release_date": "2023-02-27T23:00:00.000+00:00", "generator": { "date": "2024-02-15T17:16:55.912+00:00", "engine": { "name": "BSI-WID", "version": "1.3.0" } }, "id": "WID-SEC-W-2023-0503", "initial_release_date": "2014-01-06T23:00:00.000+00:00", "revision_history": [ { "date": "2014-01-06T23:00:00.000+00:00", "number": "1", "summary": "Initial Release" }, { "date": "2014-01-06T23:00:00.000+00:00", "number": "2", "summary": "Version nicht vorhanden" }, { "date": "2014-01-07T23:00:00.000+00:00", "number": "3", "summary": "New remediations available" }, { "date": "2014-01-07T23:00:00.000+00:00", "number": "4", "summary": "Version nicht vorhanden" }, { "date": "2014-01-08T23:00:00.000+00:00", "number": "5", "summary": "New remediations available" }, { "date": "2014-01-08T23:00:00.000+00:00", "number": "6", "summary": "Version nicht vorhanden" }, { "date": "2014-01-08T23:00:00.000+00:00", "number": "7", "summary": "Version nicht vorhanden" }, { "date": "2014-01-09T23:00:00.000+00:00", "number": "8", "summary": "New remediations available" }, { "date": "2014-01-09T23:00:00.000+00:00", "number": "9", "summary": "Version nicht vorhanden" }, { "date": "2014-01-14T23:00:00.000+00:00", "number": "10", "summary": "New remediations available" }, { "date": "2014-01-14T23:00:00.000+00:00", "number": "11", "summary": "Version nicht vorhanden" }, { "date": "2014-02-25T23:00:00.000+00:00", "number": "12", "summary": "New remediations available" }, { "date": "2014-04-21T22:00:00.000+00:00", "number": "13", "summary": "added F5 ARX" }, { "date": "2014-04-21T22:00:00.000+00:00", "number": "14", "summary": "Version nicht vorhanden" }, { "date": "2014-04-21T22:00:00.000+00:00", "number": "15", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "16", "summary": "New remediations available" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "17", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "18", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "19", "summary": "Version nicht vorhanden" }, { "date": "2014-05-13T22:00:00.000+00:00", "number": "20", "summary": "Version nicht vorhanden" }, { "date": "2014-07-06T22:00:00.000+00:00", "number": "21", "summary": "New remediations available" }, { "date": "2014-07-06T22:00:00.000+00:00", "number": "22", "summary": "Version nicht vorhanden" }, { "date": "2014-07-31T22:00:00.000+00:00", "number": "23", "summary": "New remediations available" }, { "date": "2019-03-13T23:00:00.000+00:00", "number": "24", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2019-08-18T22:00:00.000+00:00", "number": "25", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2021-03-31T22:00:00.000+00:00", "number": "26", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2022-04-10T22:00:00.000+00:00", "number": "27", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2023-02-27T23:00:00.000+00:00", "number": "28", "summary": "Neue Updates von IBM aufgenommen" } ], "status": "final", "version": "28" } }, "product_tree": { "branches": [ { "branches": [ { "category": "product_name", "name": "Debian Linux Wheezy (7.0)", "product": { "name": "Debian Linux Wheezy (7.0)", "product_id": "T001572", "product_identification_helper": { "cpe": "cpe:/o:debian:debian_linux:7.0" } } } ], "category": "vendor", "name": "Debian" }, { "branches": [ { "category": "product_name", "name": "FreeBSD Project FreeBSD OS", "product": { "name": "FreeBSD Project FreeBSD OS", "product_id": "4035", "product_identification_helper": { "cpe": "cpe:/o:freebsd:freebsd:-" } } } ], "category": "vendor", "name": "FreeBSD Project" }, { "branches": [ { "category": "product_name", "name": "HP System Management Homepage", "product": { "name": "HP System Management Homepage", "product_id": "4995", "product_identification_helper": { "cpe": "cpe:/a:hp:system_management_homepage:-" } } } ], "category": "vendor", "name": "HPE" }, { "branches": [ { "branches": [ { "category": "product_name", "name": "IBM AIX 7.1", "product": { "name": "IBM AIX 7.1", "product_id": "153340", "product_identification_helper": { "cpe": "cpe:/o:ibm:aix:7.1" } } }, { "category": "product_name", "name": "IBM AIX 5.3", "product": { "name": "IBM AIX 5.3", "product_id": "30418", "product_identification_helper": { "cpe": "cpe:/o:ibm:aix:5.3" } } }, { "category": "product_name", "name": "IBM AIX 6.1", "product": { "name": "IBM AIX 6.1", "product_id": "73182", "product_identification_helper": { "cpe": "cpe:/o:ibm:aix:6.1" } } } ], "category": "product_name", "name": "AIX" }, { "branches": [ { "category": "product_name", "name": "IBM FlashSystem 710", "product": { "name": "IBM FlashSystem 710", "product_id": "T026541", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:710" } } }, { "category": "product_name", "name": "IBM FlashSystem 810", "product": { "name": "IBM FlashSystem 810", "product_id": "T026542", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:810" } } }, { "category": "product_name", "name": "IBM FlashSystem 720", "product": { "name": "IBM FlashSystem 720", "product_id": "T026543", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:720" } } }, { "category": "product_name", "name": "IBM FlashSystem 820", "product": { "name": "IBM FlashSystem 820", "product_id": "T026544", "product_identification_helper": { "cpe": "cpe:/a:ibm:flashsystem:820" } } } ], "category": "product_name", "name": "FlashSystem" } ], "category": "vendor", "name": "IBM" }, { "branches": [ { "category": "product_name", "name": "Open Source OpenSSL 1.0.1 \u003c= 1.0.1e", "product": { "name": "Open Source OpenSSL 1.0.1 \u003c= 1.0.1e", "product_id": "228244", "product_identification_helper": { "cpe": "cpe:/a:openssl:openssl:1.0.1e" } } } ], "category": "vendor", "name": "Open Source" }, { "branches": [ { "category": "product_name", "name": "Oracle Linux", "product": { "name": "Oracle Linux", "product_id": "T004914", "product_identification_helper": { "cpe": "cpe:/o:oracle:linux:-" } } }, { "category": "product_name", "name": "Oracle Solaris 11.1", "product": { "name": "Oracle Solaris 11.1", "product_id": "T001955", "product_identification_helper": { "cpe": "cpe:/a:oracle:solaris:11.1" } } } ], "category": "vendor", "name": "Oracle" }, { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux", "product": { "name": "Red Hat Enterprise Linux", "product_id": "67646", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:-" } } } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "category": "product_name", "name": "Ubuntu Linux", "product": { "name": "Ubuntu Linux", "product_id": "T000126", "product_identification_helper": { "cpe": "cpe:/o:canonical:ubuntu_linux:-" } } } ], "category": "vendor", "name": "Ubuntu" }, { "branches": [ { "category": "product_name", "name": "F5 ARX 6.0.0 - 6.4.0", "product": { "name": "F5 ARX 6.0.0 - 6.4.0", "product_id": "T002411", "product_identification_helper": { "cpe": "cpe:/a:f5:arx:6.4.0" } } } ], "category": "vendor", "name": "f5" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-4353", "notes": [ { "category": "description", "text": "In OpenSSL besteht eine Denial of Service Schwachstelle. Diese Schwachstelle wird durch einen Fehler im Zusammenhang mit einem NULL-Zeiger w\u00e4hrend eines speziell manipulierten TLS Handshake verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren." } ], "product_status": { "known_affected": [ "153340", "67646", "4035", "T004914", "73182", "T001955", "T000126", "T026544", "4995", "T026543", "30418", "T001572", "T026542", "T026541" ], "last_affected": [ "228244", "T002411" ] }, "release_date": "2014-01-06T23:00:00Z", "title": "CVE-2013-4353" } ] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.