Obsoleted by: 126254-01 SunOS 5.10_x86: libssl patch |
Disclaimer:
Please note:
Although OBSOLETED patches are available on SunSolve, Sun recommends using the most recent patches and the most recent revision of those patches. OBSOLETED patches do not include the latest bug fixes and/or product enhancements, and may require the installation of additional patches as a corrective measure.
Status: OBSOLETE
Patch Id: 121230-02
***********************************************************************
READ THE TERMS OF THE AGREEMENT ("AGREEMENT") IN THE LEGAL_LICENSE.TXT
FILE CAREFULLY BEFORE USING THIS SOFTWARE. BY USING THE SOFTWARE, YOU
AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE
TERMS, PROMPTLY DESTROY THE UNUSED SOFTWARE.
***********************************************************************Summary: Obsoleted by: 126254-01 SunOS 5.10_x86: libssl patch
Date: Apr/23/2007
Installation Requirements:
Reboot immediately after patch is installed, an alternative may be in Special Install Instructions
Install in Single User Mode, an alternative may be in Special Install InstructionsSolaris Release: 10_x86
Sun OS Release: 5.10_x86
Unbundled Product:
Unbundled Release:
Xref: This patch available for SPARC as patch 121229
Topic:
SunOS 5.10_x86: libssl patch
Relevant Architecture: i386
BugId's fixed with this patch:
6332476 6466370 6467218 6476279 6476772 6483054
Changes incorporated in this version:
6466370 6467218 6476279 6476772 6483054
Patches accumulated and obsoleted by this patch:
Patches which conflict with this patch:
Required Patches:
118855-36 (or greater)
Obsoleted by:
Files Included in this Patch:
/usr/sfw/include/openssl/dh.h
/usr/sfw/include/openssl/dsa.h
/usr/sfw/include/openssl/opensslconf.h
/usr/sfw/include/openssl/opensslv.h
/usr/sfw/include/openssl/rsa.h
/usr/sfw/include/openssl/ssl.h
/usr/sfw/lib/amd64/libcrypto.so.0.9.7
/usr/sfw/lib/amd64/libssl.so.0.9.7
/usr/sfw/lib/libcrypto.so.0.9.7
/usr/sfw/lib/libssl.so.0.9.7
Problem Description:
6466370 Security vulnerabilities in OpenSSL may lead to DoS or code execution (CVE-2006-3738,CVE-2006-4343)
6467218 fix RSA signature forgery (CVE-2006-4339)
6476279 multiple vulnerabilities in OpenSSL (CVE-2006-2937, CVE-2006-2940)
6476772 update OpenSSL version string with information about security patches included
6483054 OpenSSL lacks Thread Support
(from 121230-01)
6332476 CAN-2005-2969 upgrade OpenSSL to 0.9.7h or 0.9.8a
Revision History:
121230-01
Patch Installation Instructions:
--------------------------------
For Solaris 2.0-2.6 releases, refer to the Install.info file and/or
the README within the patch for instructions on using the generic
'installpatch' and 'backoutpatch' scripts provided with each patch.
For Solaris 7-10 releases, refer to the man pages for instructions
on using 'patchadd' and 'patchrm' scripts provided with Solaris.
Any other special or non-generic installation instructions should be
described below as special instructions. The following example
installs a patch to a standalone machine:
example# patchadd /var/spool/patch/104945-02
The following example removes a patch from a standalone system:
example# patchrm 104945-02
For additional examples please see the appropriate man pages.Special Install Instructions:
-----------------------------
NOTE 1: If you're planning to set up Zones on this system, please make
sure to install the following patch which fixes bugid 6216195
(zone installation confused by UPDATE=yes in pkginfo(4) file.)
119255-06 (or greater) Install and Patch Utilities Patch
README -- Last modified date: Wednesday, September 12, 2007
|
Subscribe |
Careers |
Contact Us |
Site Maps |
Legal Notices |
Terms of Use |
Your Privacy Rights |
Sun Contracted Content
Sun Contracted Feature
