ELSA-2021-3798

ULN >
Oracle Linux Errata repository >
ELSA-2021-3798

ELSA-2021-3798 - openssl security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2021-10-13

Description

[1.0.2k-22]
- fix CVE-2021-23841 openssl: NULL pointer dereference
in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126

Related CVEs

CVE-2021-23840

CVE-2021-23841

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	openssl-1.0.2k-22.el7_9.src.rpm	1ec19840fa9d239fad7a1ef830030f8b	-
	openssl-1.0.2k-22.el7_9.aarch64.rpm	e028638372737d047228dff78efd0c1c	-
	openssl-devel-1.0.2k-22.el7_9.aarch64.rpm	73efe3503a6492ed8b4463304285a978	-
	openssl-libs-1.0.2k-22.el7_9.aarch64.rpm	be342b1be22e17c965442eb7d6d1cdcf	-
	openssl-perl-1.0.2k-22.el7_9.aarch64.rpm	3136933a0a87906d58a8e42452f2cb71	-
	openssl-static-1.0.2k-22.el7_9.aarch64.rpm	c4d2acbd72dc6dcb47202dd055d2041e	-

Oracle Linux 7 (x86_64)	openssl-1.0.2k-22.el7_9.src.rpm	1ec19840fa9d239fad7a1ef830030f8b	-
	openssl-1.0.2k-22.el7_9.x86_64.rpm	b00d208c1eff75a51eff42dd4774299b	-
	openssl-devel-1.0.2k-22.el7_9.i686.rpm	f8ff2cd16b09c5c3224dd5c179af8017	-
	openssl-devel-1.0.2k-22.el7_9.x86_64.rpm	e9f58ae5609c916b21e8571d33726014	-
	openssl-libs-1.0.2k-22.el7_9.i686.rpm	f8ec5cbf790294bb2903aace68670cac	-
	openssl-libs-1.0.2k-22.el7_9.x86_64.rpm	b2638e9abef72ae02b5f463b0855dc27	-
	openssl-perl-1.0.2k-22.el7_9.x86_64.rpm	ea08ba4e2959a63a02201e12510683b2	-
	openssl-static-1.0.2k-22.el7_9.i686.rpm	c89b0726aa0d013112808f288c85f1d7	-
	openssl-static-1.0.2k-22.el7_9.x86_64.rpm	010e6030ef4b750c0c08a6ddf2a22470	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691