Stay Connected:

ELSA-2024-12056

ELSA-2024-12056 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2024-01-10

Description


[1:1.1.1k-12]
- Backport implicit rejection mechanism for RSA PKCS#1 v1.5 to RHEL-8 series
(a proper fix for CVE-2020-25659)
Resolves: RHEL-17696

[1:1.1.1k-11]
- Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking
excessively long X9.42 DH keys or parameters may be very slow
Resolves: RHEL-16538

[1:1.1.1k-10]
- Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters
Resolves: RHEL-14245
- Fix CVE-2023-3817: Excessive time spent checking DH q parameter value
Resolves: RHEL-14239


Related CVEs


CVE-2023-5678
CVE-2023-3446
CVE-2023-3817

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) openssl-1.1.1k-12.ksplice1.el8_9.src.rpmb8c2b31c5b654b93a70eea4b73f47b22-ol8_aarch64_userspace_ksplice
openssl-1.1.1k-12.ksplice1.el8_9.aarch64.rpmafbbf135d62a4e1896b05ea9d332df9d-ol8_aarch64_userspace_ksplice
openssl-devel-1.1.1k-12.ksplice1.el8_9.aarch64.rpm659e24525a60c57f160237a0528f8aae-ol8_aarch64_userspace_ksplice
openssl-libs-1.1.1k-12.ksplice1.el8_9.aarch64.rpmf9b80502ecb62cd413776b26cf49c52f-ol8_aarch64_userspace_ksplice
openssl-perl-1.1.1k-12.ksplice1.el8_9.aarch64.rpm99e88cc82bc13b2456c28f982e803e73-ol8_aarch64_userspace_ksplice
openssl-static-1.1.1k-12.ksplice1.el8_9.aarch64.rpme976c47c728463c3d59e47f06bd57d09-ol8_aarch64_userspace_ksplice
Oracle Linux 8 (x86_64) openssl-1.1.1k-12.ksplice1.el8_9.src.rpm0eda40d61301caf3d06ed51f0b60859d-ol8_x86_64_userspace_ksplice
openssl-1.1.1k-12.ksplice1.el8_9.x86_64.rpm577e8e65859f8a928b532fc7c80ac534-ol8_x86_64_userspace_ksplice
openssl-devel-1.1.1k-12.ksplice1.el8_9.i686.rpmedd23b9f9f5d96dc169267cfd746b415-ol8_x86_64_userspace_ksplice
openssl-devel-1.1.1k-12.ksplice1.el8_9.x86_64.rpm33e71370cf40584c2cefe70615372181-ol8_x86_64_userspace_ksplice
openssl-libs-1.1.1k-12.ksplice1.el8_9.i686.rpm97d5a67a38538ae85bcbbba2d5a2ce41-ol8_x86_64_userspace_ksplice
openssl-libs-1.1.1k-12.ksplice1.el8_9.x86_64.rpm2181044caec7072756fcc9c249f1c40e-ol8_x86_64_userspace_ksplice
openssl-perl-1.1.1k-12.ksplice1.el8_9.x86_64.rpmf238f736c989aa983e97c579b0156905-ol8_x86_64_userspace_ksplice



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights