ELSA-2021-9528

ULN >
Oracle Linux Errata repository >
ELSA-2021-9528

ELSA-2021-9528 - openssl security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2021-10-29

Description

[1.0.2k-22_fips]
- Change Epoch from 1 to 10
- Fix DH self-test to add shared secret comparison [Orabug: 32467026]
- Add DH support changes for SP 800-56A rev3 requirements [Orabug: 32467059]
- Add TLS KDF self-test [Orabug: 32467193]
- Add EC keys pairwise consistency test [Orabug: 32467059]

[1.0.2k-22]
- fix CVE-2021-23841 openssl: NULL pointer dereference
in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126

Related CVEs

CVE-2021-23840

CVE-2021-23841

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	openssl-1.0.2k-22.el7_9_fips.src.rpm	a48e534f24b5c07fabc28799b535cbfe	ELSA-2017-3518
	openssl-1.0.2k-22.el7_9_fips.aarch64.rpm	4209880ad9a67fa177f9b53aca3f0f8f	ELSA-2017-3518
	openssl-devel-1.0.2k-22.el7_9_fips.aarch64.rpm	dcefd61130cef66eca72c75ed284395f	ELSA-2017-3518
	openssl-libs-1.0.2k-22.el7_9_fips.aarch64.rpm	93694c75ba2c3c7d4b0250be2f78d8a4	ELSA-2017-3518
	openssl-perl-1.0.2k-22.el7_9_fips.aarch64.rpm	868551ce60d67e3ff06e9d31cbcf4a72	ELSA-2017-3518
	openssl-static-1.0.2k-22.el7_9_fips.aarch64.rpm	13ec044b811ba43f55f032bd994ef02f	ELSA-2017-3518

Oracle Linux 7 (x86_64)	openssl-1.0.2k-22.el7_9_fips.src.rpm	a48e534f24b5c07fabc28799b535cbfe	ELSA-2017-3518
	openssl-1.0.2k-22.el7_9_fips.x86_64.rpm	eccf0dec8dc414da8c764feca803d879	ELSA-2017-3518
	openssl-devel-1.0.2k-22.el7_9_fips.i686.rpm	e70b375664c1637a392cdbe5ad3893b5	ELSA-2017-3518
	openssl-devel-1.0.2k-22.el7_9_fips.x86_64.rpm	69c42a8974e59f2511d2643f9b85f1f4	ELSA-2017-3518
	openssl-libs-1.0.2k-22.el7_9_fips.i686.rpm	5f524fde0c75e81b553c682f465df26b	ELSA-2017-3518
	openssl-libs-1.0.2k-22.el7_9_fips.x86_64.rpm	60b1aac3b79f6ee68964a76b97b9a462	ELSA-2017-3518
	openssl-perl-1.0.2k-22.el7_9_fips.x86_64.rpm	dbf7d79edc9e60792190ea74647811cf	ELSA-2017-3518
	openssl-static-1.0.2k-22.el7_9_fips.i686.rpm	6cfb909b52eafe50d8fcbc0245a9f058	ELSA-2017-3518
	openssl-static-1.0.2k-22.el7_9_fips.x86_64.rpm	a658e46ea64659e336e3ff4afc26b46d	ELSA-2017-3518

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691