Back to bug 1377594

Who When What Removed Added
Tomas Hoger 2016-09-20 07:51:51 UTC CC security-response-team
Tomas Hoger 2016-09-20 07:51:59 UTC Blocks 1367347
Tomas Hoger 2016-09-20 08:00:32 UTC Whiteboard impact=low,public=20160922,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=new,rhel-5/openssl=new,rhel-5/openssl097a=new,rhel-6/openssl=affected,rhel-6/openssl098e=new,rhel-7/openssl=affected,rhel-7/openssl098e=new,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected impact=low,public=20160922,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=affected,jbews-2/openssl=affected,jbews-3/openssl=affected,eap-5/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected
Tomas Hoger 2016-09-20 08:47:42 UTC Depends On 1377623
Tomas Hoger 2016-09-20 08:47:52 UTC Depends On 1377624
Tomas Hoger 2016-09-20 08:48:04 UTC Depends On 1377625
Tomas Hoger 2016-09-20 08:48:11 UTC Depends On 1377626
Tomas Hoger 2016-09-21 11:30:29 UTC Doc Text An out of bounds read flaw was found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use this flaw to crash a TLS/SSL server or client using OpenSSL.
Tomas Hoger 2016-09-21 11:42:29 UTC Doc Text An out of bounds read flaw was found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use this flaw to crash a TLS/SSL server or client using OpenSSL. Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.
Tomas Hoger 2016-09-21 18:31:54 UTC Whiteboard impact=low,public=20160922,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=affected,jbews-2/openssl=affected,jbews-3/openssl=affected,eap-5/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected impact=low,public=20160921,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=affected,jbews-2/openssl=affected,jbews-3/openssl=affected,eap-5/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected
Tomas Hoger 2016-09-21 21:41:31 UTC Attachment #1202764 Attachment is obsolete 0 1
Tomas Hoger 2016-09-22 10:58:53 UTC Group security, qe_staff
Summary EMBARGOED CVE-2016-6306 openssl: certificate message OOB reads CVE-2016-6306 openssl: certificate message OOB reads
Tomas Hoger 2016-09-22 11:02:52 UTC Depends On 1378408
Tomas Hoger 2016-09-22 11:03:01 UTC Depends On 1378409
Tomas Hoger 2016-09-22 11:03:11 UTC Depends On 1378410
Tomas Hoger 2016-09-22 11:03:22 UTC Depends On 1378411
Norman Sardella 2016-09-22 13:07:26 UTC CC sardella
Slawomir Czarko 2016-09-23 06:58:37 UTC CC slawomir
Karlo 2016-09-26 09:30:19 UTC CC karlo.luiten+bugzilla
Yasuhiro Ozone 2016-09-26 10:30:44 UTC CC yozone
Apurbita Mukherjee 2016-09-26 13:21:53 UTC CC apmukher
Jay Shin 2016-09-28 00:44:05 UTC CC jaeshin
Link ID Red Hat Knowledge Base (Solution) 2662211
Hubert Kario 2016-10-04 18:09:36 UTC CC hkario
Timothy Walsh 2016-10-05 06:28:37 UTC Whiteboard impact=low,public=20160921,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=affected,jbews-2/openssl=affected,jbews-3/openssl=affected,eap-5/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected impact=low,public=20160921,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=wontfix,jbews-3/openssl=affected,jbcs-1/openssl=affected,eap-5/openssl=wontfix,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected
Timothy Walsh 2016-10-05 06:28:45 UTC CC csutherl, jclere, mbabacek, mturk, twalsh
Timothy Walsh 2016-10-05 06:29:34 UTC Depends On 1381817
Timothy Walsh 2016-10-05 06:29:46 UTC Depends On 1381818
Timothy Walsh 2017-02-21 04:44:03 UTC CC bbaranow, bmaxwell, cdewolf, dandread, darran.lofthouse, dosoudil, erik-fedora, gzaronik, huwang, jawilson, ktietz, lgao, marcandre.lureau, myarboro, pgier, psakar, pslavice, redhat-bugzilla, rjones, rnetuka, rsvoboda, vtunka, weli
Whiteboard impact=low,public=20160921,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=wontfix,jbews-3/openssl=affected,jbcs-1/openssl=affected,eap-5/openssl=wontfix,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected impact=low,public=20160921,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=wontfix,jbews-3/openssl=defer,jbcs-1/openssl=affected,eap-5/openssl=wontfix,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected
errata-xmlrpc 2018-07-12 16:05:12 UTC Link ID Red Hat Product Errata RHSA-2018:2187
errata-xmlrpc 2018-07-12 16:14:45 UTC Link ID Red Hat Product Errata RHSA-2018:2186
errata-xmlrpc 2018-07-12 16:16:50 UTC Link ID Red Hat Product Errata RHSA-2018:2185
Product Security DevOps Team 2019-06-08 02:58:53 UTC Status NEW CLOSED
Resolution --- ERRATA
Last Closed 2019-06-08 02:58:53 UTC
Product Security DevOps Team 2019-09-29 13:56:12 UTC Whiteboard impact=low,public=20160921,reported=20160919,source=upstream,cvss2=1.2/AV:L/AC:H/Au:N/C:N/I:N/A:P,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-125,rhel-4/openssl=wontfix,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=wontfix,jbews-3/openssl=defer,jbcs-1/openssl=affected,eap-5/openssl=wontfix,eap-6/openssl=affected,fedora-all/openssl=affected,epel-5/openssl101e=affected,fedora-all/mingw-openssl=affected,epel-7/mingw-openssl=affected

Back to bug 1377594