RHEL6.5: Openssl advertises support for curves it doesn't actually support in Client Hello

Solution Verified - Updated -

Issue

  • openssl advertises support for curves it doesn't actually support in Client Hello
  • We are suspecting some issue with openssl (1.0.1e-15) package shipped with RHEL6.5. We are working with cloud API with the vmware vcloud API. This setup was working with RHEL 6.4 with older version of openssl, but when same set of packages installed on RHEL6.5, we encountered following error:

    Unhandled exception or status code (SSL_connect returned=1 errno=0 state=SSLv3 read server key exchange B: EC lib (OpenSSL::SSL::SSLError))
    

Environment

  • Red Hat Enterprise Linux (RHEL) 6.5
  • openssl version 1.0.1e-15 and later affected
  • openssl version 1.0.1e-16.el6_5 and later not affected

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content