My Oracle Support Banner

CVE-2014-0224 Patch Availability for Oracle Exadata Database Machine (OpenSSL SSL/TLS MITM vulnerability) (Doc ID 1901419.1)

Last updated on FEBRUARY 06, 2020

Applies to:

Oracle Exadata Storage Server Software - Version 11.2.1.2.0 to 12.1.1.1.0 [Release 11.2 to 12.1]
Information in this document applies to any platform.

Purpose

This document provides details about versions of Exadata Storage Server Software affected by CVE-2014-0224 and instructions on how to update Oracle Linux on Exadata with updated OpenSSL.

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Details
 Affected Exadata Releases
 Steps to Update OpenSSL Package on Exadata Storage Servers and Exadata Database Servers Running Oracle Linux
 Step 1 - Verify Installed OpenSSL Version
 Step 2 - Obtain and Stage Updated OpenSSL
 Step 3 - Install New OpenSSL
 Step 3.1 - Install new OpenSSL on Database servers running Exadata 11.2.3.2.1 or later
 Step 3.2 - Install new OpenSSL on Database servers running Exadata 11.2.2.4.2 or earlier
 Step 3.3 - Install new OpenSSL on Storage servers
 Step 4 - Verify Installed OpenSSL Version
 Step 5 - Restart Services That Use OpenSSL Libraries
 Step 5.1 - Restart database server services
 Step 5.2 - Restart storage server services
 
 Database Servers running Oracle Solaris
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.