You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa openssl

Sigurnosni nedostaci programskog paketa openssl

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2015-12-06 17:43:07.764447

Name : openssl
Product : Fedora 23
Version : 1.0.2e
Release : 1.fc23
Summary : Utilities from the general purpose cryptography library with TLS implementation
Description :
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and

Update Information:

Moderate security issues fixed in this update. Faster handling of some common
elliptic curves enabled on 64 bit architectures. Improved Makefile.certificate
to not use serial number 0 by default.

[ 1 ] Bug #1288322 – CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak
[ 2 ] Bug #1288320 – CVE-2015-3194 OpenSSL: Certificate verify crash with missing PSS parameter
[ 3 ] Bug #1288317 – CVE-2015-3193 OpenSSL: BN_mod_exp may produce incorrect results on x86_64

This update can be installed with the “yum” update program. Use
su -c ‘yum update openssl’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorMarko Stanec
Cert idNCERT-REF-2015-12-0008-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa php-symfony

Otkriveni su sigurnosni nedostaci u programskom paketu php-symfony za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju krađu korisničke sesije...