Problem Note 58391: OpenSSL version 1.0.2h is available for SASĀ® 9.3 and 9.4 on UNIX and z/OS
 |  |  |  |  |
For SAS 9.3 and SAS 9.4 in UNIX and z/OS operating environments, the SSL capability in SAS Foundation products includes OpenSSL 1.0.1, which contains security vulnerabilities. These vulnerabilities are described in the OpenSSL Security Advisory (3rd May 2016).
OpenSSL version 1.0.2h corrects the problem, and is available via a hot fix.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | Base SAS | z/OS | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 |
| z/OS 64-bit | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| 64-bit Enabled AIX | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| 64-bit Enabled HP-UX | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| 64-bit Enabled Solaris | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| Linux | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| Linux for x64 | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| Solaris for x64 | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
| HP-UX IPF | 9.3 | 9.4_M3 | 9.3 TS1M0 | 9.4 TS1M3 | ||
A fix for this issue for Base SAS 9.4_M3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/V01.html#58391A fix for this issue for SAS/Secure SSL 9.4_M3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/V53.html#58391A fix for this issue for Base SAS 9.4_M2 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/R19.html#58391A fix for this issue for SAS/Secure SSL 9.4_M2 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/R08.html#58391A fix for this issue for Base SAS 9.4_M1 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/M88.html#58391A fix for this issue for SAS/Secure SSL 9.4_M1 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/P70.html#58391A fix for this issue for Base SAS 9.4 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/L08.html#58391A fix for this issue for SAS/Secure SSL 9.4 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/P69.html#58391A fix for this issue for Base SAS 9.3_M2 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/I22.html#58391A fix for this issue for SAS/Secure SSL 9.3_M2 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/I47.html#58391A fix for this issue for Base SAS 9.3_M1 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/F98.html#58391A fix for this issue for SAS/Secure SSL 9.3_M1 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/T21.html#58391A fix for this issue for Base SAS 9.3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/E80.html#58391A fix for this issue for SAS/Secure SSL 9.3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/U37.html#58391| Type: | Problem Note |
| Priority: | high |
| Date Modified: | 2022-02-23 14:11:53 |
| Date Created: | 2016-06-14 08:50:00 |