ELSA-2022-9225

ULN >
Oracle Linux Errata repository >
ELSA-2022-9225

ELSA-2022-9225 - openssl security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2022-03-18

Description

[1.0.2k-24.0.3]
- fix CVE-2022-0778 openssl: Fix possible infinite loop in BN_mod_sqrt()
- Change Epoch from 1 to 10
- Fix DH self-test to add shared secret comparison [Orabug: 32467026]
- Add DH support changes for SP 800-56A rev3 requirements [Orabug: 32467059]
- Add TLS KDF self-test [Orabug: 32467193]
- Add EC keys pairwise consistency test [Orabug: 32467059]

[1.0.2k-24]
- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993

Related CVEs

CVE-2022-0778

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	openssl-1.0.2k-24.0.3.el7_9_fips.src.rpm	2c5444b8e59d16004ec1c5d93c7743ffd19098d066f0a84e5afe33afcbbbe58f	ELSA-2017-3518	ol7_aarch64_u8_security_validation
	openssl-1.0.2k-24.0.3.el7_9_fips.aarch64.rpm	72741097c7a5bc93ef03f8f8bff93b812eb31ff0e751f8ba610c9c474d66ceda	ELSA-2017-3518	ol7_aarch64_u8_security_validation
	openssl-devel-1.0.2k-24.0.3.el7_9_fips.aarch64.rpm	99f8b7112f65da53d6161a188b3201f4ac4e5458bde715d0474186e5d7053c4e	ELSA-2017-3518	ol7_aarch64_u8_security_validation
	openssl-libs-1.0.2k-24.0.3.el7_9_fips.aarch64.rpm	0886d4983e6efeafe5aff15533e2bc996999d4d42f32f6d1e99d1ef4dd06dc33	ELSA-2017-3518	ol7_aarch64_u8_security_validation
	openssl-perl-1.0.2k-24.0.3.el7_9_fips.aarch64.rpm	af2d74495a0b1cecdae6960d94399e05e7c54468834e3f763ddf3a2236e3848e	ELSA-2017-3518	ol7_aarch64_u8_security_validation
	openssl-static-1.0.2k-24.0.3.el7_9_fips.aarch64.rpm	fec4c23e0b43660989d7d431ba3f2d8b3f0c06290fdca657bc921dc2e1f11d55	ELSA-2017-3518	ol7_aarch64_u8_security_validation

Oracle Linux 7 (x86_64)	openssl-1.0.2k-24.0.3.el7_9_fips.src.rpm	2c5444b8e59d16004ec1c5d93c7743ffd19098d066f0a84e5afe33afcbbbe58f	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-1.0.2k-24.0.3.el7_9_fips.x86_64.rpm	8dc50c11e22d24f151200ad9799df45ab80a591cd57bc94847a9cfbe099606d0	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-devel-1.0.2k-24.0.3.el7_9_fips.i686.rpm	6eef51d4b30d08643cba0c980d5e8e22e7792557f96cf449c3fc54184a34d14b	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-devel-1.0.2k-24.0.3.el7_9_fips.x86_64.rpm	ea2768024e67e53a33058c1e7988f595e47e4d326409be8a31ea127c9aae5858	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-libs-1.0.2k-24.0.3.el7_9_fips.i686.rpm	d1896d8258992475bc10d4358761456e06cae90af44408ed1f5f341527a6d2e2	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-libs-1.0.2k-24.0.3.el7_9_fips.x86_64.rpm	02b45d9917130fc61180ece93c8af024af599309f40ca767d2f8ee46cbebb58a	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-perl-1.0.2k-24.0.3.el7_9_fips.x86_64.rpm	3254fcc2d09569e9e829817d368a79e3f17ea1168ae80c006738604eaa2e33ad	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-static-1.0.2k-24.0.3.el7_9_fips.i686.rpm	3b46eee185837ec3f1f566e278d64275fbef9477452ce6a72c8bbc49f078b5ff	ELSA-2017-3518	ol7_x86_64_u8_security_validation
	openssl-static-1.0.2k-24.0.3.el7_9_fips.x86_64.rpm	ce795921f41f67c1e0dfd5814259b33ec867c21ca68468e26ca334fc2daf74a4	ELSA-2017-3518	ol7_x86_64_u8_security_validation

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691