ELBA-2023-1698
- ULN >
- Oracle Linux Errata repository >
- ELBA-2023-1698
ELBA-2023-1698 - libgcrypt bug fix and enhancement update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2023-04-11 |
Description
[1.10.0-10]
- Provide FIPS indicators for MD and HMACs
- Improve PCT tests for ECDSA and always run them after key is generated
- Add missing guards for FIPS status in md_sign/verify function
- Provider FIPS indicators for public key operation flags
[1.10.0-9]
- Avoid usage of invalid arguments sizes for PBKDF2 in FIPS mode
- Do not allow large salt lengths with RSA-PSS padding
- Disable X9.31 key generation in FIPS mode
- Update the FIPS integrity checking code to upstream version
- Update cipher modes FIPS indicators for AES WRAP and GCM
- Disable jitter entropy generator
[1.10.0-8]
- Fix unneeded PBKDF2 passphrase length limitation in FIPS mode
- Enforce HMAC key lengths in MD API in FIPS mode
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_aarch64_appstream |
| libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_aarch64_baseos_latest | |
| libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_aarch64_u1_baseos_patch | |
| libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_aarch64_u2_baseos_base | |
| libgcrypt-1.10.0-10.el9_1.aarch64.rpm | e9b25235c64c69b60a503f239e6c02aabef034ae04a915241a199102ba1a17a9 | - | ol9_aarch64_baseos_latest | |
| libgcrypt-1.10.0-10.el9_1.aarch64.rpm | e9b25235c64c69b60a503f239e6c02aabef034ae04a915241a199102ba1a17a9 | - | ol9_aarch64_u1_baseos_patch | |
| libgcrypt-1.10.0-10.el9_1.aarch64.rpm | e9b25235c64c69b60a503f239e6c02aabef034ae04a915241a199102ba1a17a9 | - | ol9_aarch64_u2_baseos_base | |
| libgcrypt-devel-1.10.0-10.el9_1.aarch64.rpm | 75393c04afa79c5d5873df22b11543885ba9e1e47ef5e9c5773a89957f4cdbfa | - | ol9_aarch64_appstream | |
| Oracle Linux 9 (x86_64) | libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_x86_64_appstream |
| libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_x86_64_baseos_latest | |
| libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_x86_64_u1_baseos_patch | |
| libgcrypt-1.10.0-10.el9_1.src.rpm | 1e931e5e5514af8b6f41b86d71598b665e77dda73421794c325a1bd7b03758d7 | - | ol9_x86_64_u2_baseos_base | |
| libgcrypt-1.10.0-10.el9_1.i686.rpm | fc0b11dd3cd17059bf31f6e0d7f1b5ca3a19dbe4f07f77eb600ce1e57ad2aef6 | - | ol9_x86_64_baseos_latest | |
| libgcrypt-1.10.0-10.el9_1.i686.rpm | fc0b11dd3cd17059bf31f6e0d7f1b5ca3a19dbe4f07f77eb600ce1e57ad2aef6 | - | ol9_x86_64_u1_baseos_patch | |
| libgcrypt-1.10.0-10.el9_1.i686.rpm | fc0b11dd3cd17059bf31f6e0d7f1b5ca3a19dbe4f07f77eb600ce1e57ad2aef6 | - | ol9_x86_64_u2_baseos_base | |
| libgcrypt-1.10.0-10.el9_1.x86_64.rpm | 1cb14f30065a8d622cbce37a7d393edf57a003c5c6557a284a426a4ed1ac7908 | - | ol9_x86_64_baseos_latest | |
| libgcrypt-1.10.0-10.el9_1.x86_64.rpm | 1cb14f30065a8d622cbce37a7d393edf57a003c5c6557a284a426a4ed1ac7908 | - | ol9_x86_64_u1_baseos_patch | |
| libgcrypt-1.10.0-10.el9_1.x86_64.rpm | 1cb14f30065a8d622cbce37a7d393edf57a003c5c6557a284a426a4ed1ac7908 | - | ol9_x86_64_u2_baseos_base | |
| libgcrypt-devel-1.10.0-10.el9_1.i686.rpm | 465a7898c42ace69c457861eb45836027c3875bf1633abe2421c290bab677fd1 | - | ol9_x86_64_appstream | |
| libgcrypt-devel-1.10.0-10.el9_1.x86_64.rpm | e7a600e96a8c6ba7abc8c5ad0051477040806cb6958c8091669e6adbba6521ed | - | ol9_x86_64_appstream | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
