Changes made to bug 1310596

Back to bug 1310596

Who	When	What	Removed	Added
Huzaifa S. Sidhpurwala	2016-02-22 10:31:19 UTC	CC		security-response-team
Red Hat Bugzilla	2016-02-22 10:31:19 UTC	Doc Type	---	Bug Fix
Huzaifa S. Sidhpurwala	2016-02-22 10:31:24 UTC	Blocks		1301847
Hubert Kario	2016-02-22 16:54:14 UTC	CC		hkario
Adam Mariš	2016-02-22 17:32:30 UTC	CC		amaris
Huzaifa S. Sidhpurwala	2016-02-25 09:07:00 UTC	Whiteboard	impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=new,rhel-6/openssl=affected,rhel-7/openssl=affected	impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected
Huzaifa S. Sidhpurwala	2016-02-26 07:50:31 UTC	Depends On		1301849
Huzaifa S. Sidhpurwala	2016-02-26 07:51:07 UTC	Depends On		1301851
Huzaifa S. Sidhpurwala	2016-02-29 07:04:52 UTC	Whiteboard	impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected	impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new
Huzaifa S. Sidhpurwala	2016-02-29 08:16:11 UTC	Doc Text		A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially-crafted DSA private keys, which when processed by an application compiled against OpenSSL, could cause the application to crash.
Martin Prpič	2016-02-29 12:09:11 UTC	Whiteboard	impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new
Martin Prpič	2016-02-29 12:09:14 UTC	Summary	EMBARGOED CVE-2016-0705 OpenSSL: Double-free in DSA code	CVE-2016-0705 OpenSSL: Double-free in DSA code
Martin Prpič	2016-02-29 12:09:17 UTC	Group	security, qe_staff
Martin Prpič	2016-02-29 12:09:52 UTC	Depends On		1312860
Martin Prpič	2016-02-29 12:09:58 UTC	Depends On		1312861
Martin Prpič	2016-02-29 12:10:09 UTC	Depends On		1312862
Martin Prpič	2016-02-29 13:20:43 UTC	Doc Text	A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially-crafted DSA private keys, which when processed by an application compiled against OpenSSL, could cause the application to crash.	A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.
Norman Sardella	2016-03-01 15:29:32 UTC	CC		sardella
Kurt Seifried	2016-03-01 20:13:52 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new
Kurt Seifried	2016-03-01 20:16:44 UTC	Depends On		1313535
Tomas Hoger	2016-03-01 22:55:19 UTC	Fixed In Version		openssl 1.0.1s, openssl 1.0.2g
Kurt Seifried	2016-03-02 01:08:56 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected
Kurt Seifried	2016-03-02 01:09:02 UTC	CC		fdeutsch, jgregusk
Kurt Seifried	2016-03-02 01:16:17 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected
Kurt Seifried	2016-03-02 01:26:42 UTC	Depends On		1313595
Kurt Seifried	2016-03-02 01:28:24 UTC	Depends On		1313598
Huzaifa S. Sidhpurwala	2016-03-02 05:10:15 UTC	Depends On		1301850
Huzaifa S. Sidhpurwala	2016-03-02 05:10:22 UTC	Depends On		1301852
Yasuhiro Ozone	2016-03-08 23:56:17 UTC	CC		yozone
Slawomir Czarko	2016-03-14 10:54:18 UTC	CC		slawomir
Timothy Walsh	2016-04-29 12:43:22 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected
Timothy Walsh	2016-04-29 12:46:02 UTC	Depends On		1331754
Timothy Walsh	2016-09-06 04:37:55 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=notaffected,eap-6/openssl=notaffected,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected
Timothy Walsh	2016-09-06 04:38:04 UTC	CC		bbaranow, bmaxwell, cdewolf, csutherl, dandread, darran.lofthouse, dosoudil, gzaronik, jawilson, lgao, myarboro, pgier, psakar, pslavice, rnetuka, rsvoboda, twalsh, vtunka
Adam Mariš	2016-11-08 16:18:46 UTC	CC	amaris
Timothy Walsh	2017-01-19 06:55:25 UTC	Blocks		1395463
Tomas Hoger	2018-08-20 07:50:39 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=notaffected,eap-6/openssl=notaffected,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=notaffected,eap-6/openssl=notaffected,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected,rhel-6/java-1.8.0-ibm=affected,rhel-7/java-1.8.0-ibm=affected,rhn_satellite_5/java-1.8.0-ibm=affected
Tomas Hoger	2018-08-20 07:52:32 UTC	Depends On		1618719
Tomas Hoger	2018-08-20 07:52:33 UTC	Depends On		1618720
Tomas Hoger	2018-08-20 07:52:41 UTC	Depends On		1618721
errata-xmlrpc	2018-08-27 14:20:25 UTC	Link ID		Red Hat Product Errata RHSA-2018:2568
errata-xmlrpc	2018-08-28 19:18:52 UTC	Link ID		Red Hat Product Errata RHSA-2018:2575
Cedric Buissart	2018-09-03 12:30:31 UTC	Depends On		1624844, 1624845
errata-xmlrpc	2018-09-17 14:53:46 UTC	Link ID		Red Hat Product Errata RHSA-2018:2713
Product Security DevOps Team	2019-06-08 02:48:25 UTC	Status	NEW	CLOSED
		Resolution	---	ERRATA
		Last Closed		2019-06-08 02:48:25 UTC
Product Security DevOps Team	2019-09-29 13:44:17 UTC	Whiteboard	impact=low,public=20160218,reported=20160222,source=upstream,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:N/A:P,rhel-5/openssl=notaffected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=notaffected,rhel-6/openssl098e=notaffected,rhel-7/openssl098e=notaffected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=notaffected,eap-6/openssl=notaffected,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected,rhel-6/java-1.8.0-ibm=affected,rhel-7/java-1.8.0-ibm=affected,rhn_satellite_5/java-1.8.0-ibm=affected

Back to bug 1310596