Stay Connected:

ELSA-2022-9683

ELSA-2022-9683 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2022-08-05

Description


[1:1.1.1k-7]
- Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86
Resolves: CVE-2022-2097
- Update expired certificates used in the testsuite
Resolves: rhbz#2100554
- Fix CVE-2022-1292: openssl: c_rehash script allows command injection
Resolves: rhbz#2090371
- Fix CVE-2022-2068: the c_rehash script allows command injection
Resolves: rhbz#2098278


Related CVEs


CVE-2022-1292
CVE-2022-2068
CVE-2022-2097

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) openssl-1.1.1k-7.ksplice1.el8_6.src.rpmf1bc8554366f910e7a7448e44884e8a6-
openssl-1.1.1k-7.ksplice1.el8_6.aarch64.rpm64d66d4bca43499078e5bdf3c622d417-
openssl-debugsource-1.1.1k-7.ksplice1.el8_6.aarch64.rpm7c7902170934edb2ffe13d867dd51b11-
openssl-devel-1.1.1k-7.ksplice1.el8_6.aarch64.rpm47c5448dc722a1f16bdaa9d829099f6d-
openssl-libs-1.1.1k-7.ksplice1.el8_6.aarch64.rpmab227f724354639860383afcc66a5199-
openssl-perl-1.1.1k-7.ksplice1.el8_6.aarch64.rpm377859b9a034705673125a229bd265f1-
openssl-static-1.1.1k-7.ksplice1.el8_6.aarch64.rpmccfd08884a9722fe4a8b6461a24c1f06-
Oracle Linux 8 (x86_64) openssl-1.1.1k-7.ksplice1.el8_6.src.rpmf1bc8554366f910e7a7448e44884e8a6-
openssl-1.1.1k-7.ksplice1.el8_6.x86_64.rpm19a665450765b6a877d39d615fafba2c-
openssl-devel-1.1.1k-7.ksplice1.el8_6.i686.rpm90ad0d13fc593b905e9b3e94a97d6c60-
openssl-devel-1.1.1k-7.ksplice1.el8_6.x86_64.rpm2aefaac8e202f9acfec65e181ab7943b-
openssl-libs-1.1.1k-7.ksplice1.el8_6.i686.rpm03e64b5453588279ce938a0c2be9148b-
openssl-libs-1.1.1k-7.ksplice1.el8_6.x86_64.rpma08d365f43da8faf907357868057b958-
openssl-perl-1.1.1k-7.ksplice1.el8_6.x86_64.rpm57f79fc8c7f8ffff0642612e506903dc-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights