ELSA-2022-9683

ULN >
Oracle Linux Errata repository >
ELSA-2022-9683

ELSA-2022-9683 - openssl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2022-08-05

Description

[1:1.1.1k-7]
- Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86
Resolves: CVE-2022-2097
- Update expired certificates used in the testsuite
Resolves: rhbz#2100554
- Fix CVE-2022-1292: openssl: c_rehash script allows command injection
Resolves: rhbz#2090371
- Fix CVE-2022-2068: the c_rehash script allows command injection
Resolves: rhbz#2098278

Related CVEs

CVE-2022-2097

CVE-2022-2068

CVE-2022-1292

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-7.ksplice1.el8_6.src.rpm	d5c4f240ba700542fab81fe64eadef0959708d1c48ead70bead8889d98bf63dc	-	ol8_aarch64_userspace_ksplice
	openssl-1.1.1k-7.ksplice1.el8_6.aarch64.rpm	e90b875a851c459fd0254f6616d18436de6ce3e1df680488d2fea2721ab4b983	-	ol8_aarch64_userspace_ksplice
	openssl-debugsource-1.1.1k-7.ksplice1.el8_6.aarch64.rpm	d898e912046e1a3b419b5d327b22a710d5cc0aeaa5a81166f39c36bd82070794	-	ol8_aarch64_userspace_ksplice
	openssl-devel-1.1.1k-7.ksplice1.el8_6.aarch64.rpm	3c54163c79e66d4de35c5a8c7d58b7e8de05d274e472fa8bb15c55074c4fa1e1	-	ol8_aarch64_userspace_ksplice
	openssl-libs-1.1.1k-7.ksplice1.el8_6.aarch64.rpm	eec66f8128bf306e7ede5f65605d9ec3dfbb773593430e2f561e9e5dc2c2b50c	-	ol8_aarch64_userspace_ksplice
	openssl-perl-1.1.1k-7.ksplice1.el8_6.aarch64.rpm	5ec5f073056463e6a91253dbbdf7ff68b3e8f46a95ffed98e845530b9b2c761f	-	ol8_aarch64_userspace_ksplice
	openssl-static-1.1.1k-7.ksplice1.el8_6.aarch64.rpm	de79ac4168e1fde0bdc7a0dbf5b179767f09ad3888af90f43a15c26a2dd6c05f	-	ol8_aarch64_userspace_ksplice

Oracle Linux 8 (x86_64)	openssl-1.1.1k-7.ksplice1.el8_6.src.rpm	d5c4f240ba700542fab81fe64eadef0959708d1c48ead70bead8889d98bf63dc	-	ol8_x86_64_userspace_ksplice
	openssl-1.1.1k-7.ksplice1.el8_6.x86_64.rpm	7470c5ec24b0b0073b1cba59d9044ea3f03b35d1ac97a08108367b2725d0ab35	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-7.ksplice1.el8_6.i686.rpm	5f572606ba780972c6a1a6ef231120769857cfcf5664e8b5a937cc8320c586ac	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-7.ksplice1.el8_6.x86_64.rpm	df6536a645fbe86b989a9586ad48e8be8e7f595f0f0c8978d8797e58ed99fa68	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-7.ksplice1.el8_6.i686.rpm	45e68fd6b31abaae84df6ac2e37d7257165c10bfcda01487443e071a943bbf18	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-7.ksplice1.el8_6.x86_64.rpm	508ccd24ddbe8cfe56655ae36f8d8aba84a88747d790327c74b22eb4f8871a5d	-	ol8_x86_64_userspace_ksplice
	openssl-perl-1.1.1k-7.ksplice1.el8_6.x86_64.rpm	90004120cbe5b66feae2efb54b88638d6b3705c757256e36b6bbc7467bd6180d	-	ol8_x86_64_userspace_ksplice

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691