ELSA-2022-9023

ELSA-2022-9023 - openssl security update

Type:SECURITY
Severity:MODERATE
Release Date:2022-01-14

Description


[1.0.2k-23.0.1]
- Change Epoch from 1 to 10
- Fix DH self-test to add shared secret comparison [Orabug: 32467026]
- Add DH support changes for SP 800-56A rev3 requirements [Orabug: 32467059]
- Add TLS KDF self-test [Orabug: 32467193]
- Add EC keys pairwise consistency test [Orabug: 32467059]

[1.0.2k-23]
- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054


Related CVEs


CVE-2021-3712

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) openssl-1.0.2k-23.0.1.el7_9_fips.src.rpma1ea9ce9344e309d3d306477857caaeb-
openssl-1.0.2k-23.0.1.el7_9_fips.x86_64.rpm7a4252813ed967f9663b3c4dda32e864-
openssl-devel-1.0.2k-23.0.1.el7_9_fips.i686.rpmfcd43113a7d8fbfcd4b2a2745aaa6eb4-
openssl-devel-1.0.2k-23.0.1.el7_9_fips.x86_64.rpm4df0f79960404df6931542b2582a60e2-
openssl-libs-1.0.2k-23.0.1.el7_9_fips.i686.rpm9cf806a5630a92c75a8afc5750218dfd-
openssl-libs-1.0.2k-23.0.1.el7_9_fips.x86_64.rpma249cf23bd48f60eeb53c9e7fdf19cec-
openssl-perl-1.0.2k-23.0.1.el7_9_fips.x86_64.rpmfb34ef630c8512e7b819646bf8af9c55-
openssl-static-1.0.2k-23.0.1.el7_9_fips.i686.rpm2d969ffb924185a6a8ba16f8c5f165f8-
openssl-static-1.0.2k-23.0.1.el7_9_fips.x86_64.rpmd86b9e071ba4ef87447aa3fce84cf1df-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete