ELSA-2022-4899 - compat-openssl11 security and bug fix update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2022-06-30 |
Description
[1:1.1.1k-4.0.1]
- Backport upstream PRs 18446 and 18481 which update
certificates used for the self-tests [Orabug: 34326055]
[1:1.1.1k-4]
- Fixes CVE-2022-0778 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates
Resolves: rhbz#2063147
- Disable FIPS mode; it does not work and will not be certified
Resolves: rhbz#2091968
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 9 (aarch64) | compat-openssl11-1.1.1k-4.0.1.el9_0.src.rpm | 6b9df70891b1b366ff1b60c5c72dfb22 | - |
| compat-openssl11-1.1.1k-4.0.1.el9_0.aarch64.rpm | b531e82d828cff07174680af05bdab98 | - |
|
| Oracle Linux 9 (x86_64) | compat-openssl11-1.1.1k-4.0.1.el9_0.src.rpm | 6b9df70891b1b366ff1b60c5c72dfb22 | - |
| compat-openssl11-1.1.1k-4.0.1.el9_0.i686.rpm | 747a86bdd6148f4ed7391254bdcf74a2 | - |
| compat-openssl11-1.1.1k-4.0.1.el9_0.x86_64.rpm | 9d85af5cfba83904d0c82b4a67a16149 | - |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
