Issued:
2018-10-30
Updated:
2018-10-30

RHSA-2018:3221 - Security Advisory

Synopsis

Moderate: openssl security, bug fix, and enhancement update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openssl is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.

Security Fix(es):

  • openssl: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries (CVE-2018-0495)
  • openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang (CVE-2018-0732)
  • openssl: Handling of crafted recursive ASN.1 structures can cause a stack overflow and resulting denial of service (CVE-2018-0739)
  • openssl: Malformed X.509 IPAdressFamily could cause OOB read (CVE-2017-3735)
  • openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

For the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux Desktop 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
  • Red Hat Enterprise Linux for ARM 64 7 aarch64
  • Red Hat Enterprise Linux for Power 9 7 ppc64le
  • Red Hat Enterprise Linux for IBM System z (Structure A) 7 s390x

Fixes

  • BZ - 1486144 - CVE-2017-3735 openssl: Malformed X.509 IPAdressFamily could cause OOB read
  • BZ - 1548401 - modify X509_NAME comparison function to be case sensitive for CA name lists in SSL
  • BZ - 1561266 - CVE-2018-0739 openssl: Handling of crafted recursive ASN.1 structures can cause a stack overflow and resulting denial of service
  • BZ - 1568253 - CVE-2018-0737 openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys
  • BZ - 1585004 - ppc64le opensslconf.h is incompatible with swig
  • BZ - 1591100 - CVE-2018-0732 openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang
  • BZ - 1591163 - CVE-2018-0495 openssl: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries
  • BZ - 1603597 - Confusing error message when asking for invalid DSA parameter sizes in FIPS mode

Red Hat Enterprise Linux Server 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
x86_64
openssl-1.0.2k-16.el7.x86_64.rpm SHA-256: 556fe731eceec1617626e85a2c156cec3645bdb2a22f2d46ba8bfde91fb2aa86
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-devel-1.0.2k-16.el7.i686.rpm SHA-256: 98321541b36e33fcf755aee3dbd22f9311e5d83f976cff5657360b4d9065dbfe
openssl-devel-1.0.2k-16.el7.x86_64.rpm SHA-256: 23bdaf966f4d411473dafc405d283098a12c5738a24d5dfa07e50d406edeba9c
openssl-libs-1.0.2k-16.el7.i686.rpm SHA-256: ba9d1b3679f7e3c44b71dff224f442c0c637f7eceb0c654d0f313e5b605d4009
openssl-libs-1.0.2k-16.el7.x86_64.rpm SHA-256: 0d41e7f684728b935c5999e234bf53e61bc4e926620ef0f5aa7de1d12d476900
openssl-perl-1.0.2k-16.el7.x86_64.rpm SHA-256: 478b19f14515d2222ba0f569246fa51c051a452a71348b1f1ff26015e66b1821
openssl-static-1.0.2k-16.el7.i686.rpm SHA-256: 4a4c19de53ac05bf77276ad3e06742caff75ad880a55dc1e154adcf6c82bc9c4
openssl-static-1.0.2k-16.el7.x86_64.rpm SHA-256: 9fd2b9f73c33c59fbd6caa7b0ac2e1ba3cc1fed3cc9c0704c171008ded813ad1

Red Hat Enterprise Linux Workstation 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
x86_64
openssl-1.0.2k-16.el7.x86_64.rpm SHA-256: 556fe731eceec1617626e85a2c156cec3645bdb2a22f2d46ba8bfde91fb2aa86
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-devel-1.0.2k-16.el7.i686.rpm SHA-256: 98321541b36e33fcf755aee3dbd22f9311e5d83f976cff5657360b4d9065dbfe
openssl-devel-1.0.2k-16.el7.x86_64.rpm SHA-256: 23bdaf966f4d411473dafc405d283098a12c5738a24d5dfa07e50d406edeba9c
openssl-libs-1.0.2k-16.el7.i686.rpm SHA-256: ba9d1b3679f7e3c44b71dff224f442c0c637f7eceb0c654d0f313e5b605d4009
openssl-libs-1.0.2k-16.el7.x86_64.rpm SHA-256: 0d41e7f684728b935c5999e234bf53e61bc4e926620ef0f5aa7de1d12d476900
openssl-perl-1.0.2k-16.el7.x86_64.rpm SHA-256: 478b19f14515d2222ba0f569246fa51c051a452a71348b1f1ff26015e66b1821
openssl-static-1.0.2k-16.el7.i686.rpm SHA-256: 4a4c19de53ac05bf77276ad3e06742caff75ad880a55dc1e154adcf6c82bc9c4
openssl-static-1.0.2k-16.el7.x86_64.rpm SHA-256: 9fd2b9f73c33c59fbd6caa7b0ac2e1ba3cc1fed3cc9c0704c171008ded813ad1

Red Hat Enterprise Linux Desktop 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
x86_64
openssl-1.0.2k-16.el7.x86_64.rpm SHA-256: 556fe731eceec1617626e85a2c156cec3645bdb2a22f2d46ba8bfde91fb2aa86
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-devel-1.0.2k-16.el7.i686.rpm SHA-256: 98321541b36e33fcf755aee3dbd22f9311e5d83f976cff5657360b4d9065dbfe
openssl-devel-1.0.2k-16.el7.x86_64.rpm SHA-256: 23bdaf966f4d411473dafc405d283098a12c5738a24d5dfa07e50d406edeba9c
openssl-libs-1.0.2k-16.el7.i686.rpm SHA-256: ba9d1b3679f7e3c44b71dff224f442c0c637f7eceb0c654d0f313e5b605d4009
openssl-libs-1.0.2k-16.el7.x86_64.rpm SHA-256: 0d41e7f684728b935c5999e234bf53e61bc4e926620ef0f5aa7de1d12d476900
openssl-perl-1.0.2k-16.el7.x86_64.rpm SHA-256: 478b19f14515d2222ba0f569246fa51c051a452a71348b1f1ff26015e66b1821
openssl-static-1.0.2k-16.el7.i686.rpm SHA-256: 4a4c19de53ac05bf77276ad3e06742caff75ad880a55dc1e154adcf6c82bc9c4
openssl-static-1.0.2k-16.el7.x86_64.rpm SHA-256: 9fd2b9f73c33c59fbd6caa7b0ac2e1ba3cc1fed3cc9c0704c171008ded813ad1

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
s390x
openssl-1.0.2k-16.el7.s390x.rpm SHA-256: 59fe024c12593b4e206e7994c8a2f5dffe5945de2a2906e36fc76a2750f648d2
openssl-debuginfo-1.0.2k-16.el7.s390.rpm SHA-256: 936a96e4acba33864c496e22599d47540187e9b515f1701cd4eb25ceb771ef09
openssl-debuginfo-1.0.2k-16.el7.s390.rpm SHA-256: 936a96e4acba33864c496e22599d47540187e9b515f1701cd4eb25ceb771ef09
openssl-debuginfo-1.0.2k-16.el7.s390x.rpm SHA-256: 24ce3929c40a6935a1484c7b50e753a43e3b38424d5fbe41224ed281c50a3d8b
openssl-debuginfo-1.0.2k-16.el7.s390x.rpm SHA-256: 24ce3929c40a6935a1484c7b50e753a43e3b38424d5fbe41224ed281c50a3d8b
openssl-devel-1.0.2k-16.el7.s390.rpm SHA-256: 362c074d0abe39271e81c8462fd40cf9e70539f5ee42d36ed3a382379cc54de6
openssl-devel-1.0.2k-16.el7.s390x.rpm SHA-256: adcfbe1619d58e2c5336456ea6de93b2b089bb6caac577ccb18a5bd61c739e97
openssl-libs-1.0.2k-16.el7.s390.rpm SHA-256: 05ae6c0a6ce27d54684e736372fb2b07f3d03f4b052464df97278af2cc099a6f
openssl-libs-1.0.2k-16.el7.s390x.rpm SHA-256: 69037edd4aede7e909e3cdf204220eb1cb6d6547c118fa62fc652f8cbafa603b
openssl-perl-1.0.2k-16.el7.s390x.rpm SHA-256: e134d50de9ba02a72b5ebe89820ece0e3e403ab70e6db3eaba08eeec12b7ee5a
openssl-static-1.0.2k-16.el7.s390.rpm SHA-256: 10067525fa58687cdcbadaa197ebea36ecf92bd96790e6535c9eb3a8c766992d
openssl-static-1.0.2k-16.el7.s390x.rpm SHA-256: 409131af5e4dc22175bae226e61937f786737f89ac5d84ef2b79333d67919da3

Red Hat Enterprise Linux for Power, big endian 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
ppc64
openssl-1.0.2k-16.el7.ppc64.rpm SHA-256: d9c5a9bd608367cd35ff5cfd72eda7c64dbc5e630af7fe3d3d0be76078908fb9
openssl-debuginfo-1.0.2k-16.el7.ppc.rpm SHA-256: 4332192b74d0f7c9277a5929101eb3120cc028bf02bb8679f1626c74b84cf381
openssl-debuginfo-1.0.2k-16.el7.ppc.rpm SHA-256: 4332192b74d0f7c9277a5929101eb3120cc028bf02bb8679f1626c74b84cf381
openssl-debuginfo-1.0.2k-16.el7.ppc64.rpm SHA-256: ff82d4adb294b99813aa049f68a47be1e41a18b48ace3259afdf46ad232b23e1
openssl-debuginfo-1.0.2k-16.el7.ppc64.rpm SHA-256: ff82d4adb294b99813aa049f68a47be1e41a18b48ace3259afdf46ad232b23e1
openssl-devel-1.0.2k-16.el7.ppc.rpm SHA-256: 00efb8ec2eb60456fdb598b2e49f50373677c28c1a8e1ddb3c4db210f4933593
openssl-devel-1.0.2k-16.el7.ppc64.rpm SHA-256: 91ead2211e799b99871cc0859d2f9f3727858bd5f278d50d957f1a5af5134741
openssl-libs-1.0.2k-16.el7.ppc.rpm SHA-256: 150e2e766363084c5fbcf936a9913d6a594b5e8f799208813dfe6552b94b816a
openssl-libs-1.0.2k-16.el7.ppc64.rpm SHA-256: 0767ce4389dfbd79ce539d72d2ec95dbe117a1f709393fa08ca248c493306798
openssl-perl-1.0.2k-16.el7.ppc64.rpm SHA-256: d9270919b86c8c303ad22d04542cf6c71d1da0fca8cf4e02e519e1e7ac183f1d
openssl-static-1.0.2k-16.el7.ppc.rpm SHA-256: 59374ab7406e6274e6600626e544b0eb3a902552a78b82b50dbb4f8a14e47012
openssl-static-1.0.2k-16.el7.ppc64.rpm SHA-256: 79ea997081d640d85dac6e4b41ef234ad71b4b04f9b6f54d761539f2ee6a93a6

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
x86_64
openssl-1.0.2k-16.el7.x86_64.rpm SHA-256: 556fe731eceec1617626e85a2c156cec3645bdb2a22f2d46ba8bfde91fb2aa86
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.i686.rpm SHA-256: 056af539d33e9e07068ad33116b7ca21c4c24bc543b52920e442a3c929fa0113
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-debuginfo-1.0.2k-16.el7.x86_64.rpm SHA-256: 48410251286c8182f031cc045a527deb09887eca95d7e01762761ff3495e947e
openssl-devel-1.0.2k-16.el7.i686.rpm SHA-256: 98321541b36e33fcf755aee3dbd22f9311e5d83f976cff5657360b4d9065dbfe
openssl-devel-1.0.2k-16.el7.x86_64.rpm SHA-256: 23bdaf966f4d411473dafc405d283098a12c5738a24d5dfa07e50d406edeba9c
openssl-libs-1.0.2k-16.el7.i686.rpm SHA-256: ba9d1b3679f7e3c44b71dff224f442c0c637f7eceb0c654d0f313e5b605d4009
openssl-libs-1.0.2k-16.el7.x86_64.rpm SHA-256: 0d41e7f684728b935c5999e234bf53e61bc4e926620ef0f5aa7de1d12d476900
openssl-perl-1.0.2k-16.el7.x86_64.rpm SHA-256: 478b19f14515d2222ba0f569246fa51c051a452a71348b1f1ff26015e66b1821
openssl-static-1.0.2k-16.el7.i686.rpm SHA-256: 4a4c19de53ac05bf77276ad3e06742caff75ad880a55dc1e154adcf6c82bc9c4
openssl-static-1.0.2k-16.el7.x86_64.rpm SHA-256: 9fd2b9f73c33c59fbd6caa7b0ac2e1ba3cc1fed3cc9c0704c171008ded813ad1

Red Hat Enterprise Linux for Power, little endian 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
ppc64le
openssl-1.0.2k-16.el7.ppc64le.rpm SHA-256: b7ab753f01fa3796428992c0ac8c4ea4f89ce150599a0dc98b98a8cd86353352
openssl-debuginfo-1.0.2k-16.el7.ppc64le.rpm SHA-256: 5dcad504cd19fec1a9503060907530b7d7bb888bfedde417ef9a40ecda8ebcec
openssl-debuginfo-1.0.2k-16.el7.ppc64le.rpm SHA-256: 5dcad504cd19fec1a9503060907530b7d7bb888bfedde417ef9a40ecda8ebcec
openssl-devel-1.0.2k-16.el7.ppc64le.rpm SHA-256: 3c7c76909971a450e9591c6f4e864cc24907d388c94553d19a1cdfe5fc3d09f6
openssl-libs-1.0.2k-16.el7.ppc64le.rpm SHA-256: e6c3392d6c0c14e2e934d8e8595e4671cbef3410339a1a3a732eb8763b76935b
openssl-perl-1.0.2k-16.el7.ppc64le.rpm SHA-256: a7cf056afbfb39af08b02cbbd835e464dbbba2501d14cafdd32988a7c2883571
openssl-static-1.0.2k-16.el7.ppc64le.rpm SHA-256: b8414a162e8b5a0e2cdad8a4d78d05bbd130f3c6485b202563efbed3a6259445

Red Hat Enterprise Linux for ARM 64 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
aarch64
openssl-1.0.2k-16.el7.aarch64.rpm SHA-256: bec35fa3000f085e6ad1e5b790f68c187ed15a7e17dde69ab3f64dcbd027e8ad
openssl-debuginfo-1.0.2k-16.el7.aarch64.rpm SHA-256: 7eff9f642707d3c92973051fc9c7a1e300749f9a49f0b220bf9ac83601866bcf
openssl-debuginfo-1.0.2k-16.el7.aarch64.rpm SHA-256: 7eff9f642707d3c92973051fc9c7a1e300749f9a49f0b220bf9ac83601866bcf
openssl-devel-1.0.2k-16.el7.aarch64.rpm SHA-256: 9cfac7d643bcb1c267306c840b4ab86e999c0aca947a5289d5147e584a1c0476
openssl-libs-1.0.2k-16.el7.aarch64.rpm SHA-256: e2237b9d6fad8ee79b0a21521e295779136a6b76ce35c48aeca36cab0bc2815a
openssl-perl-1.0.2k-16.el7.aarch64.rpm SHA-256: 817a5853776f4ce8677f4093d3e4afc2372e819ef2c2eb636e6fc4c79c95be60
openssl-static-1.0.2k-16.el7.aarch64.rpm SHA-256: add0ab7d7059ee6c2f721a462c165c886384638be5438021778047ccd1108cf0

Red Hat Enterprise Linux for Power 9 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
ppc64le
openssl-1.0.2k-16.el7.ppc64le.rpm SHA-256: b7ab753f01fa3796428992c0ac8c4ea4f89ce150599a0dc98b98a8cd86353352
openssl-debuginfo-1.0.2k-16.el7.ppc64le.rpm SHA-256: 5dcad504cd19fec1a9503060907530b7d7bb888bfedde417ef9a40ecda8ebcec
openssl-debuginfo-1.0.2k-16.el7.ppc64le.rpm SHA-256: 5dcad504cd19fec1a9503060907530b7d7bb888bfedde417ef9a40ecda8ebcec
openssl-devel-1.0.2k-16.el7.ppc64le.rpm SHA-256: 3c7c76909971a450e9591c6f4e864cc24907d388c94553d19a1cdfe5fc3d09f6
openssl-libs-1.0.2k-16.el7.ppc64le.rpm SHA-256: e6c3392d6c0c14e2e934d8e8595e4671cbef3410339a1a3a732eb8763b76935b
openssl-perl-1.0.2k-16.el7.ppc64le.rpm SHA-256: a7cf056afbfb39af08b02cbbd835e464dbbba2501d14cafdd32988a7c2883571
openssl-static-1.0.2k-16.el7.ppc64le.rpm SHA-256: b8414a162e8b5a0e2cdad8a4d78d05bbd130f3c6485b202563efbed3a6259445

Red Hat Enterprise Linux for IBM System z (Structure A) 7

SRPM
openssl-1.0.2k-16.el7.src.rpm SHA-256: 1205138e73f7a3bf83d8165be1336fa6d5dcf19fdba91b91027852e9f0b402ee
s390x
openssl-1.0.2k-16.el7.s390x.rpm SHA-256: 59fe024c12593b4e206e7994c8a2f5dffe5945de2a2906e36fc76a2750f648d2
openssl-debuginfo-1.0.2k-16.el7.s390.rpm SHA-256: 936a96e4acba33864c496e22599d47540187e9b515f1701cd4eb25ceb771ef09
openssl-debuginfo-1.0.2k-16.el7.s390.rpm SHA-256: 936a96e4acba33864c496e22599d47540187e9b515f1701cd4eb25ceb771ef09
openssl-debuginfo-1.0.2k-16.el7.s390x.rpm SHA-256: 24ce3929c40a6935a1484c7b50e753a43e3b38424d5fbe41224ed281c50a3d8b
openssl-debuginfo-1.0.2k-16.el7.s390x.rpm SHA-256: 24ce3929c40a6935a1484c7b50e753a43e3b38424d5fbe41224ed281c50a3d8b
openssl-devel-1.0.2k-16.el7.s390.rpm SHA-256: 362c074d0abe39271e81c8462fd40cf9e70539f5ee42d36ed3a382379cc54de6
openssl-devel-1.0.2k-16.el7.s390x.rpm SHA-256: adcfbe1619d58e2c5336456ea6de93b2b089bb6caac577ccb18a5bd61c739e97
openssl-libs-1.0.2k-16.el7.s390.rpm SHA-256: 05ae6c0a6ce27d54684e736372fb2b07f3d03f4b052464df97278af2cc099a6f
openssl-libs-1.0.2k-16.el7.s390x.rpm SHA-256: 69037edd4aede7e909e3cdf204220eb1cb6d6547c118fa62fc652f8cbafa603b
openssl-perl-1.0.2k-16.el7.s390x.rpm SHA-256: e134d50de9ba02a72b5ebe89820ece0e3e403ab70e6db3eaba08eeec12b7ee5a
openssl-static-1.0.2k-16.el7.s390.rpm SHA-256: 10067525fa58687cdcbadaa197ebea36ecf92bd96790e6535c9eb3a8c766992d
openssl-static-1.0.2k-16.el7.s390x.rpm SHA-256: 409131af5e4dc22175bae226e61937f786737f89ac5d84ef2b79333d67919da3

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.