My Oracle Support Banner

CVE-2014-0224 Patch Availability for Oracle Exadata Database Machine (OpenSSL SSL/TLS MITM vulnerability) (Doc ID 1901419.1)

Last updated on FEBRUARY 06, 2020

Applies to:

Oracle Exadata Storage Server Software - Version to [Release 11.2 to 12.1]
Information in this document applies to any platform.


This document provides details about versions of Exadata Storage Server Software affected by CVE-2014-0224 and instructions on how to update Oracle Linux on Exadata with updated OpenSSL.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
 Affected Exadata Releases
 Steps to Update OpenSSL Package on Exadata Storage Servers and Exadata Database Servers Running Oracle Linux
 Step 1 - Verify Installed OpenSSL Version
 Step 2 - Obtain and Stage Updated OpenSSL
 Step 3 - Install New OpenSSL
 Step 3.1 - Install new OpenSSL on Database servers running Exadata or later
 Step 3.2 - Install new OpenSSL on Database servers running Exadata or earlier
 Step 3.3 - Install new OpenSSL on Storage servers
 Step 4 - Verify Installed OpenSSL Version
 Step 5 - Restart Services That Use OpenSSL Libraries
 Step 5.1 - Restart database server services
 Step 5.2 - Restart storage server services
 Database Servers running Oracle Solaris

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.