Back to bug 1309779
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Nikos Mavrogiannopoulos | 2016-02-18 16:42:14 UTC | Blocks | 1309780 | |
| Nikos Mavrogiannopoulos | 2016-02-18 16:42:31 UTC | Blocks | 1309780 | |
| Wade Mealing | 2016-02-19 01:51:52 UTC | Blocks | 1309930 | |
| Nikos Mavrogiannopoulos | 2016-02-19 08:24:44 UTC | Blocks | 1309930 | |
| Stanislav Zidek | 2016-10-10 15:25:48 UTC | CC | szidek | |
| Doc Type | Bug Fix | Release Note | ||
| Miroslav Grepl | 2016-10-19 20:46:20 UTC | Blocks | 1377248 | |
| Miroslav Grepl | 2016-11-28 09:47:38 UTC | CC | mgrepl | |
| Blocks | 1377248 | |||
| Tomas Mraz | 2017-02-10 16:52:31 UTC | Status | NEW | MODIFIED |
| Fixed In Version | openssl-1.0.2k-1.el7 | |||
| errata-xmlrpc | 2017-03-07 12:49:32 UTC | Status | MODIFIED | ON_QA |
| Tomas Mraz | 2017-04-07 12:28:14 UTC | Doc Text | MD5, MD4, and SHA0 as the signing algorithms in *OpenSSL* disabled With this update, support for the verification of MD4, and SHA0 signatures in certificates, Certificate Revocation Lists (CRL) and message signatures is removed in addition to already removed support for the verification of MD5. Also the default for generating digital signatures is changed from SHA1 to SHA256 as SHA1 should not be used for digital signatures of certificates and other data after 2016. The verification of SHA1 signatures is still enabled for legacy purposes but might be disabled in future releases. The system administrator can enable MD5, MD4, or SHA0 support by modifying the "LegacySigningMDs" option in the `etc/pki/tls/legacy-settings` policy configuration file, for example: echo 'LegacySigningMDs md5' >> /etc/pki/tls/legacy-settings You can also enable the MD5 verification by setting the "OPENSSL_ENABLE_MD5_VERIFY" environment variable. |
|
| Lenka Špačková | 2017-04-11 14:51:28 UTC | Docs Contact | mjahoda | |
| Mirek Jahoda | 2017-05-11 16:38:05 UTC | Doc Type | Release Note | Deprecated Functionality |
| Stefan Dordevic | 2017-05-25 13:06:35 UTC | CC | sdordevi | |
| QA Contact | qe-baseos-security | sdordevi | ||
| Stefan Dordevic | 2017-05-25 13:23:08 UTC | CC | tmraz | |
| Flags | needinfo?(tmraz) | |||
| Tomas Mraz | 2017-06-01 08:35:41 UTC | Flags | needinfo?(tmraz) | |
| Stanislav Zidek | 2017-06-01 08:47:33 UTC | See Also | https://bugzilla.redhat.com/show_bug.cgi?id=1457741 | |
| Flags | needinfo?(sdordevi) | |||
| Stefan Dordevic | 2017-06-01 12:25:03 UTC | Status | ON_QA | VERIFIED |
| Flags | needinfo?(sdordevi) | |||
| errata-xmlrpc | 2017-08-01 18:16:10 UTC | Status | VERIFIED | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2017-08-01 14:16:10 UTC |
Back to bug 1309779