The fix schedule of CVE-2009-0590 for RHEL3 and 4

Solution Verified - Updated -

Issue

  • Customer would like to know about a fix schedule of CVE-2009-0590 for RHEL3 and 4.
  • This is Question/Answer type of issue.

  • According to http://www.redhat.com/security/data/cve/CVE-2009-0590.html, there is a fix for this issue on RHEL5, but the issue will be fixed in the future as for RHEL3 and RHEL4 (see below).

This issue was fixed in openssl packages in Red Hat Enterprise Linux 5 via:
https://rhn.redhat.com/errata/RHSA-2009-1335.html

The Red Hat Security Response Team has rated this issue as having low security
impact, a future update may address this flaw on Red Hat Enterprise Linux 3 and 4.

Environment

  • Red Hat Enterprise Linux 4 and 3.
  • All architecutures.
  • packages: openssl, openssl-devel, openssl-perl

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In