Red Hat Product Errata RHSA-2016:0303 - Security Advisory
Issued:
2016-03-01
Updated:
2016-03-01

RHSA-2016:0303 - Security Advisory

Synopsis

Important: openssl security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated openssl packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 6.2, 6.4, and 6.5 Advanced Update
Support.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

Description

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a
full-strength, general purpose cryptography library.

A padding oracle flaw was found in the Secure Sockets Layer version 2.0
(SSLv2) protocol. An attacker can potentially use this flaw to decrypt
RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol
version, allowing them to decrypt such connections. This cross-protocol
attack is publicly referred to as DROWN. (CVE-2016-0800)

Note: This issue was addressed by disabling the SSLv2 protocol by default
when using the 'SSLv23' connection methods, and removing support for weak
SSLv2 cipher suites. For more information, refer to the knowledge base
article linked to in the References section.

It was discovered that the SSLv2 servers using OpenSSL accepted SSLv2
connection handshakes that indicated non-zero clear key length for
non-export cipher suites. An attacker could use this flaw to decrypt
recorded SSLv2 sessions with the server by using it as a decryption
oracle.(CVE-2016-0703)

It was discovered that the SSLv2 protocol implementation in OpenSSL did
not properly implement the Bleichenbacher protection for export cipher
suites. An attacker could use a SSLv2 server using OpenSSL as a
Bleichenbacher oracle. (CVE-2016-0704)

Note: The CVE-2016-0703 and CVE-2016-0704 issues could allow for more
efficient exploitation of the CVE-2016-0800 issue via the DROWN attack.

A denial of service flaw was found in the way OpenSSL handled SSLv2
handshake messages. A remote attacker could use this flaw to cause a
TLS/SSL server using OpenSSL to exit on a failed assertion if it had both
the SSLv2 protocol and EXPORT-grade cipher suites enabled. (CVE-2015-0293)

A flaw was found in the way malicious SSLv2 clients could negotiate SSLv2
ciphers that have been disabled on the server. This could result in weak
SSLv2 ciphers being used for SSLv2 connections, making them vulnerable to
man-in-the-middle attacks. (CVE-2015-3197)

Red Hat would like to thank the OpenSSL project for reporting these issues.
Upstream acknowledges Nimrod Aviram and Sebastian Schinzel as the original
reporters of CVE-2016-0800 and CVE-2015-3197; David Adrian (University of
Michigan) and J. Alex Halderman (University of Michigan) as the original
reporters of CVE-2016-0703 and CVE-2016-0704; and Sean Burford (Google) and
Emilia Käsper (OpenSSL development team) as the original reporters of
CVE-2015-0293.

All openssl users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library must be restarted, or
the system rebooted.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 6.5 x86_64
  • Red Hat Enterprise Linux Server - AUS 6.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 6.2 x86_64
  • Red Hat Enterprise Linux Server - TUS 6.5 x86_64

Fixes

  • BZ - 1202404 - CVE-2015-0293 openssl: assertion failure in SSLv2 servers
  • BZ - 1301846 - CVE-2015-3197 OpenSSL: SSLv2 doesn't block disabled ciphers
  • BZ - 1310593 - CVE-2016-0800 SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)
  • BZ - 1310811 - CVE-2016-0703 openssl: Divide-and-conquer session key recovery in SSLv2
  • BZ - 1310814 - CVE-2016-0704 openssl: SSLv2 Bleichenbacher protection overwrites wrong bytes for export ciphers

Red Hat Enterprise Linux Server - AUS 6.5

SRPM
openssl-1.0.1e-16.el6_5.16.src.rpm SHA-256: 397ab559da86d6bbd7d15eb4248acfb40b88fc6d461ec15dc5c704a147275b6a
x86_64
openssl-1.0.1e-16.el6_5.16.i686.rpm SHA-256: d68ecf988a67fab7029136a3326c52792b4e35640d06a046e9d31f13a9e9bd68
openssl-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 8cb9a2536736c6ed5c24e2731611efe5a2564b7a6938fd779ae7e9a48e028f07
openssl-debuginfo-1.0.1e-16.el6_5.16.i686.rpm SHA-256: 2b203bf8a9ac013f76287c98585b86d3d6b89a7e2c12d84c9e5b76e2a0659472
openssl-debuginfo-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 8e2e4942f06dddf08ec00955d97d37d0f39180b739a29027177ef0d4925410d0
openssl-debuginfo-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 8e2e4942f06dddf08ec00955d97d37d0f39180b739a29027177ef0d4925410d0
openssl-devel-1.0.1e-16.el6_5.16.i686.rpm SHA-256: bff58a939d3897cb73c6ca1dd5ed87c7899d11fc6ce8bd0ec6a9916a7b86da46
openssl-devel-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 6e11aefe79c5e7c917c98f892710e07a4c6e258b29e5837340969b1f3791c9c0
openssl-perl-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: dc0f0d983d34966bc43e9ec2ab644a243669750474a0ba67b5f1ac775db7bf7f
openssl-static-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 4470e30da9ef84a5702dcbd80af3a3b9650104e42b99f36d13a8be1d64bed9a3

Red Hat Enterprise Linux Server - AUS 6.4

SRPM
openssl-1.0.0-27.el6_4.5.src.rpm SHA-256: ac49a86ddfaa34773ee6b37661fef86d8aa10d661e6e3da137a5ab3a33c8806a
x86_64
openssl-1.0.0-27.el6_4.5.i686.rpm SHA-256: 4808c418798add4ede3c141cf9ef6dcaf4ac1ddc0321114a1a7d40cc6db85c79
openssl-1.0.0-27.el6_4.5.x86_64.rpm SHA-256: 1f1b23d0f7e1f38a89be53bee005fbd290fdd42d1d78c012bd59aeef74e45999
openssl-debuginfo-1.0.0-27.el6_4.5.i686.rpm SHA-256: e679f758abd3a4c32ad17571a616ef2413d15d51cd5edffc7c5eccd3306e10dd
openssl-debuginfo-1.0.0-27.el6_4.5.x86_64.rpm SHA-256: d91627a1d352d83b5687d6244f49e2ecc1ebbf88d52cc2ed34dfdfe4e86700d7
openssl-debuginfo-1.0.0-27.el6_4.5.x86_64.rpm SHA-256: d91627a1d352d83b5687d6244f49e2ecc1ebbf88d52cc2ed34dfdfe4e86700d7
openssl-devel-1.0.0-27.el6_4.5.i686.rpm SHA-256: 49ddad9d29a91ffdef32bc72c3ccbb1259b0efd792fb4ce0ef9bb517502bdc70
openssl-devel-1.0.0-27.el6_4.5.x86_64.rpm SHA-256: 8b7569eb7421804661dcb8db6d601d5142db07939c3a043899aaf8a33f25406c
openssl-perl-1.0.0-27.el6_4.5.x86_64.rpm SHA-256: 6d4f149af5e23c5b8cca6d2e3978004011bfd6c49f887ae8249039629aacb5ec
openssl-static-1.0.0-27.el6_4.5.x86_64.rpm SHA-256: 7b8ccda532eaa50660898a606a28ce2ad8386f8b6b340934fac4b18b8c9d3382

Red Hat Enterprise Linux Server - AUS 6.2

SRPM
openssl-1.0.0-20.el6_2.8.src.rpm SHA-256: f5c380417490d696155317971e532d95d3f5a9e61dd81ace154b72756ff3fd6c
x86_64
openssl-1.0.0-20.el6_2.8.i686.rpm SHA-256: aceb103af6799f18d3fc50aecae4034d06a5133c946b1063869c53dc5f0cfeb4
openssl-1.0.0-20.el6_2.8.x86_64.rpm SHA-256: b20b1cbe1e3df35e3664c989d1a724cb7d1e2fcea26f1d3385cf092ff3f68faf
openssl-debuginfo-1.0.0-20.el6_2.8.i686.rpm SHA-256: bd60ccd468660ee8f4992ad28ddbf270d2d853da57b9af7ec5be9176f25f8d86
openssl-debuginfo-1.0.0-20.el6_2.8.x86_64.rpm SHA-256: 0a1712410ef79b0f03aeb51c2b0d893633365b613aa56a739c37a614e4b6f4e7
openssl-debuginfo-1.0.0-20.el6_2.8.x86_64.rpm SHA-256: 0a1712410ef79b0f03aeb51c2b0d893633365b613aa56a739c37a614e4b6f4e7
openssl-devel-1.0.0-20.el6_2.8.i686.rpm SHA-256: 2be42464932a912f0c64de4242de1595907c8563b8d82b11e1b0b2c7c3282612
openssl-devel-1.0.0-20.el6_2.8.x86_64.rpm SHA-256: 06a2380ed15c299e43ada3232cddac64edd3730a8e46e430329e22f12886a4a9
openssl-perl-1.0.0-20.el6_2.8.x86_64.rpm SHA-256: fb81bca63a726af505010b0ad238241ed91e953e470e557fbf5032c5d0e52e78
openssl-static-1.0.0-20.el6_2.8.x86_64.rpm SHA-256: 0ce0acfbe9de33a6d9389a4516b3ac5ecb2709c2ef0a1e5ea0f0e2d0a14105c7

Red Hat Enterprise Linux Server - TUS 6.5

SRPM
openssl-1.0.1e-16.el6_5.16.src.rpm SHA-256: 397ab559da86d6bbd7d15eb4248acfb40b88fc6d461ec15dc5c704a147275b6a
x86_64
openssl-1.0.1e-16.el6_5.16.i686.rpm SHA-256: d68ecf988a67fab7029136a3326c52792b4e35640d06a046e9d31f13a9e9bd68
openssl-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 8cb9a2536736c6ed5c24e2731611efe5a2564b7a6938fd779ae7e9a48e028f07
openssl-debuginfo-1.0.1e-16.el6_5.16.i686.rpm SHA-256: 2b203bf8a9ac013f76287c98585b86d3d6b89a7e2c12d84c9e5b76e2a0659472
openssl-debuginfo-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 8e2e4942f06dddf08ec00955d97d37d0f39180b739a29027177ef0d4925410d0
openssl-debuginfo-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 8e2e4942f06dddf08ec00955d97d37d0f39180b739a29027177ef0d4925410d0
openssl-devel-1.0.1e-16.el6_5.16.i686.rpm SHA-256: bff58a939d3897cb73c6ca1dd5ed87c7899d11fc6ce8bd0ec6a9916a7b86da46
openssl-devel-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 6e11aefe79c5e7c917c98f892710e07a4c6e258b29e5837340969b1f3791c9c0
openssl-perl-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: dc0f0d983d34966bc43e9ec2ab644a243669750474a0ba67b5f1ac775db7bf7f
openssl-static-1.0.1e-16.el6_5.16.x86_64.rpm SHA-256: 4470e30da9ef84a5702dcbd80af3a3b9650104e42b99f36d13a8be1d64bed9a3

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.