ELSA-2022-5818

ELSA-2022-5818 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2022-08-02

Description


[1:1.1.1k-7]
- Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86
Resolves: CVE-2022-2097
- Update expired certificates used in the testsuite
Resolves: rhbz#2100554
- Fix CVE-2022-1292: openssl: c_rehash script allows command injection
Resolves: rhbz#2090371
- Fix CVE-2022-2068: the c_rehash script allows command injection
Resolves: rhbz#2098278


Related CVEs


CVE-2022-1292
CVE-2022-2068
CVE-2022-2097

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) openssl-1.1.1k-7.el8_6.src.rpmb4c764fac4cd0fbdc757fb61d2249c76-
openssl-1.1.1k-7.el8_6.aarch64.rpm3ea3a73b286576412197270fd9ae11e4-
openssl-devel-1.1.1k-7.el8_6.aarch64.rpmbdf324a23497f32a45cd79eeaf941242-
openssl-libs-1.1.1k-7.el8_6.aarch64.rpm483f6271c3933f3965ed1e5df6d51640-
openssl-perl-1.1.1k-7.el8_6.aarch64.rpm75fe5214a2098cb7a96496ac727bdda8-
Oracle Linux 8 (x86_64) openssl-1.1.1k-7.el8_6.src.rpmb4c764fac4cd0fbdc757fb61d2249c76-
openssl-1.1.1k-7.el8_6.x86_64.rpmd2a91159a427b1f10abdd107d9e3b1e3-
openssl-devel-1.1.1k-7.el8_6.i686.rpmbf6af349fb29a9b7b73281d6f50cb37f-
openssl-devel-1.1.1k-7.el8_6.x86_64.rpmce376df53e6b9af316526a7c24eb06e2-
openssl-libs-1.1.1k-7.el8_6.i686.rpmfa74e100abffb285bba474103252d498-
openssl-libs-1.1.1k-7.el8_6.x86_64.rpm69e8f836c9633ea32f0839107984abd0-
openssl-perl-1.1.1k-7.el8_6.x86_64.rpm49854fd097d12ed7032694dc4558c13d-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete