Oracle VM Security Advisory OVMSA-2016-0141 The following updated rpms for Oracle VM 3.2 have been uploaded to the Unbreakable Linux Network:
x86_64: openssl-0.9.8e-40.0.3.el5_11.x86_64.rpm openssl-0.9.8e-40.0.3.el5_11.i686.rpm SRPMS: http://oss.oracle.com/oraclevm/server/3.2/SRPMS-updates/openssl-0.9.8e-40.0.3.el5_11.src.rpm Description of changes: [0.9.8e-40.0.3] - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2182 - possible buffer overflow in BN_bn2dec() - fix CVE-2016-6306 - certificate message OOB reads - mitigate CVE-2016-2183 - degrade all 64bit block ciphers and RC4 to 112 bit effective strength _______________________________________________ Oraclevm-errata mailing list Oraclevm-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/oraclevm-errata