-
Wed Oct 31 2018 EL Errata <el-errata_ww@oracle.com> - 1.0.2k-16.0.1
- sha256 is used for the RSA pairwise consistency test instead of sha1
-
Tue Aug 14 2018 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16
- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
-
Tue Jun 19 2018 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14
- ppc64le is not multilib architecture (#1585004)
-
Mon Jun 18 2018 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-13
- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure
-
Wed Dec 13 2017 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-12
- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus
-
Wed Dec 06 2017 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-11
- fix deadlock in RNG in the FIPS mode in mariadb
-
Tue Nov 07 2017 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-9
- fix CVE-2017-3736 - carry propagation bug in Montgomery multiplication
-
Wed May 17 2017 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-8
- fix regression in openssl req -x509 command (#1450015)
-
Thu Apr 13 2017 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-7
- handle incorrect size gracefully in aes_p8_cbc_encrypt()
-
Mon Mar 27 2017 Tomáš Mráz <tmraz@redhat.com> 1.0.2k-6
- allow long client hellos to be received by server