Issued:
2012-03-28
Updated:
2012-03-28

RHBA-2012:0433 - openssl-ibmca bug fix update

Synopsis

openssl-ibmca bug fix update

Type/Severity

Bug Fix Advisory

Topic

An updated openssl-ibmca package that fixes one bug is now available for Red Hat Enterprise Linux 6.

Description

The openssl-ibmca package provides a dynamic OpenSSL engine for the IBM eServer Cryptographic Accelerator (ICA) crypto hardware on IBM eServer zSeries machines.

This update fixes the following bug:

  • Due to a bug in the ibmca OpenSSL engine code, applications using the OpenSSL library terminated unexpectedly with a segmentation fault when running the ibmca engine with ciphers enabled in output feedback (OFB) mode on IBM System z, z196 series, hardware. A patch has been applied to address this issue, ensuring that the OpenSSL library no longer crashes under these circumstances. (BZ#804612)

All users of openssl-ibmca are advised to upgrade to this updated package, which fixes this bug.

Solution

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

ProductVersionArch
Red Hat Enterprise Linux for IBM z Systems6s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support6.2s390x
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems)6s390x
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems)6s390x

Updated Packages

  • openssl-ibmca-debuginfo-1.2.0-2.el6_2.1.s390.rpm
  • openssl-ibmca-1.2.0-2.el6_2.1.s390x.rpm
  • openssl-ibmca-1.2.0-2.el6_2.1.src.rpm
  • openssl-ibmca-debuginfo-1.2.0-2.el6_2.1.s390x.rpm
  • openssl-ibmca-1.2.0-2.el6_2.1.s390.rpm

Fixes

(none)

CVEs

(none)

References

(none)

Additional information