ELBA-2024-12833
- ULN >
- Oracle Linux Errata repository >
- ELBA-2024-12833
ELBA-2024-12833 - openssl bug fix update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2024-11-21 |
Description
[1:3.2.2-6.0.1_fips]
- Replace upstream references in fips man pages [Orabug: 35824276]
- Add FIPS package change: add fips suffix to Release and
set Epoch to 10 [Orabug: 35824276]
- Update FIPS module name and remove upstream references from
fips_module_indicators manpage [Orabug: 35824276]
[1:3.2.2-6.0.1]
- Enable openssl-fips-provider dependency [Orabug: 36504822]
- Temporary disable openssl-fips-provider dependency [Orabug: 36504822]
- Replace upstream references [Orabug: 34340177]
[1:3.2.2-6]
- rebuilt
Related: RHEL-55339
[1:3.2.2-5]
- Fix CVE-2024-6119: Possible denial of service in X.509 name checks
Resolves: RHEL-55339
[1:3.2.2-4]
- Fix CVE-2024-5535: SSL_select_next_proto buffer overread
Resolves: RHEL-45657
[1:3.2.2-3]
- Replace HKDF backward compatibility patch with the official one
Related: RHEL-40823
[1:3.2.2-2]
- Add workaround for EVP_PKEY_CTX_add1_hkdf_info with older providers
Resolves: RHEL-40823
[1:3.2.2-1]
- Rebase to OpenSSL 3.2.2. Fixes CVE-2024-2511, CVE-2024-4603, CVE-2024-4741,
and Minerva attack.
Resolves: RHEL-32148
Resolves: RHEL-36792
Resolves: RHEL-38514
Resolves: RHEL-39111
[1:3.2.1-2]
- Update RNG changing for FIPS purpose
Resolves: RHEL-35380
[1:3.2.1-1]
- Rebasing OpenSSL to 3.2.1
Resolves: RHEL-26271
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | openssl-3.2.2-6.0.1.el9_5_fips.src.rpm | 1e06db990efd4aa561070f01b09daf6bc151ca3f224391d9e4534ac35226be7e | - | ol9_aarch64_u3_security_validation |
| openssl-3.2.2-6.0.1.el9_5_fips.aarch64.rpm | 1033d59ffb59bc4037a679f1e1e9f24c147eeed0409df62b8506f906d8d81963 | - | ol9_aarch64_u3_security_validation | |
| openssl-devel-3.2.2-6.0.1.el9_5_fips.aarch64.rpm | 4e84638f4ad7bad672d06335427a40a95a7da9bd513d7b1a8c311e911e69e12a | - | ol9_aarch64_u3_security_validation | |
| openssl-libs-3.2.2-6.0.1.el9_5_fips.aarch64.rpm | c05d5ecdad334598fd02ae3ae32559ac7c06cd40b306aa2dd174d7f6c3bf43cd | - | ol9_aarch64_u3_security_validation | |
| openssl-perl-3.2.2-6.0.1.el9_5_fips.aarch64.rpm | 327918d12e22d48f0b1f4f79df488cc72dcff77be77d67426b29545adf04f1ea | - | ol9_aarch64_u3_security_validation | |
| Oracle Linux 9 (x86_64) | openssl-3.2.2-6.0.1.el9_5_fips.src.rpm | 1e06db990efd4aa561070f01b09daf6bc151ca3f224391d9e4534ac35226be7e | - | ol9_x86_64_u3_security_validation |
| openssl-3.2.2-6.0.1.el9_5_fips.x86_64.rpm | cf1eb220011d51df6c897ee1ef119977d9933a2dbb97ee9c3b4c2634320f76df | - | ol9_x86_64_u3_security_validation | |
| openssl-devel-3.2.2-6.0.1.el9_5_fips.i686.rpm | 206aa9d8afc927cb7c73409b77ac14b639c414ae492aba811e1989ab8ae04f35 | - | ol9_x86_64_u3_security_validation | |
| openssl-devel-3.2.2-6.0.1.el9_5_fips.x86_64.rpm | fd416a7c16d10389d95466aeb19c4a01cb6aaa6900ef6ed0c31433ec46770883 | - | ol9_x86_64_u3_security_validation | |
| openssl-libs-3.2.2-6.0.1.el9_5_fips.i686.rpm | 41f5bd4f2bc94a5f6d9360ec67e2069102595c295f60efb6e07d5e5813b07c60 | - | ol9_x86_64_u3_security_validation | |
| openssl-libs-3.2.2-6.0.1.el9_5_fips.x86_64.rpm | bce32d70c2f26550266f5f38b507f7bb0ed07fb583c90def84b4ac9cbb4f510c | - | ol9_x86_64_u3_security_validation | |
| openssl-perl-3.2.2-6.0.1.el9_5_fips.x86_64.rpm | 1b7714ac16460e6d659d9c2620c0e2bd82dde7a885a5d079b97b173b9f215607 | - | ol9_x86_64_u3_security_validation | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
