"/etc/ssl/certs" is the default location where SSL / OpenSSL certs are stored on Oracle Linux Operating system
Main Menu
- Home
- Kubernetes
- Containerization Stack (DevOps)
- Oracle Cloud Native Environment (OCNE)
- Linux
- Linux "FIND" Command related Articles
- Linux "YUM" Command related Articles
- Linux "PS" Command related Articles
- "AWK" Command related Articles
- Linux "RPM" Command related Articles
- "PING" Command related Articles
- "NTP" related Articles
- Linux Network related Articles and Commands
- Linux Security related Articles
- Linux Troubleshooting Articles
- Linux FILESYSTEM related Articles
- Linux INFINIBAND Network related Articles
- Linux "MOUNT" Command related Articles
- Linux Shell Script Articles
- "BIOS" related Linux Articles
- "NFS" related Articles
- "GREP" Commands related Articles
- Linux "CPU" & "Memory" related Articles
- "SED" Command related Articles
- "SYSTEMCTL" Commands related Articles
- Logical Volumes related Articles
- "TCPDUMPS" related Articles
- GitHub Repositories (tarbots)
- About tarbots
Search
Showing posts with label Linker Article Linux SECURITY. Show all posts
Showing posts with label Linker Article Linux SECURITY. Show all posts
ORACLE LINUX: Documentation Link For Searching CVE/Vulnerability Details on Oracle Linux (OL) OS
Below is Oracle Linux Documentation Link for Searching CVE/Vulnerability details on Oracle Linux OS.
LINUX: How To Check List of Security Vulnerabilities (CVE) Fixes In Particular RPM Package On Linux? ("rpm" command)
Below command can be used to check of list of security vulnerability fixes (CVE fixes) in particular rpm package version on Linux.
Below is example snippet of above command which lists vulnerability fixes on openssl rpm package.
Products to which Article Applies
All Linux Environments
rpm -q --changelog <rpm package name> | grep -i cve
Below is example snippet of above command which lists vulnerability fixes on openssl rpm package.
# rpm -q --changelog openssl | grep -i cve
- fix CVE-2018-5407 - EC signature local timing side-channel key extraction
- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure
- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus
- fix CVE-2017-3736 - carry propagation bug in Montgomery multiplication
- fix CVE-2018-5407 - EC signature local timing side-channel key extraction
- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure
- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus
- fix CVE-2017-3736 - carry propagation bug in Montgomery multiplication
Products to which Article Applies
All Linux Environments
Additional References
https://www.centos.org/forums/viewtopic.php?t=51443
Subscribe to:
Posts (Atom)