ELSA-2022-9683

ELSA-2022-9683 - openssl security update

Type:SECURITY
Impact:MODERATE
Release Date:2022-08-05

Description


[1:1.1.1k-7]
- Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86
Resolves: CVE-2022-2097
- Update expired certificates used in the testsuite
Resolves: rhbz#2100554
- Fix CVE-2022-1292: openssl: c_rehash script allows command injection
Resolves: rhbz#2090371
- Fix CVE-2022-2068: the c_rehash script allows command injection
Resolves: rhbz#2098278


Related CVEs


CVE-2022-2097
CVE-2022-2068
CVE-2022-1292

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) openssl-1.1.1k-7.ksplice1.el8_6.src.rpmd5c4f240ba700542fab81fe64eadef0959708d1c48ead70bead8889d98bf63dc-ol8_aarch64_userspace_ksplice
openssl-1.1.1k-7.ksplice1.el8_6.aarch64.rpme90b875a851c459fd0254f6616d18436de6ce3e1df680488d2fea2721ab4b983-ol8_aarch64_userspace_ksplice
openssl-debugsource-1.1.1k-7.ksplice1.el8_6.aarch64.rpmd898e912046e1a3b419b5d327b22a710d5cc0aeaa5a81166f39c36bd82070794-ol8_aarch64_userspace_ksplice
openssl-devel-1.1.1k-7.ksplice1.el8_6.aarch64.rpm3c54163c79e66d4de35c5a8c7d58b7e8de05d274e472fa8bb15c55074c4fa1e1-ol8_aarch64_userspace_ksplice
openssl-libs-1.1.1k-7.ksplice1.el8_6.aarch64.rpmeec66f8128bf306e7ede5f65605d9ec3dfbb773593430e2f561e9e5dc2c2b50c-ol8_aarch64_userspace_ksplice
openssl-perl-1.1.1k-7.ksplice1.el8_6.aarch64.rpm5ec5f073056463e6a91253dbbdf7ff68b3e8f46a95ffed98e845530b9b2c761f-ol8_aarch64_userspace_ksplice
openssl-static-1.1.1k-7.ksplice1.el8_6.aarch64.rpmde79ac4168e1fde0bdc7a0dbf5b179767f09ad3888af90f43a15c26a2dd6c05f-ol8_aarch64_userspace_ksplice
Oracle Linux 8 (x86_64) openssl-1.1.1k-7.ksplice1.el8_6.src.rpmd5c4f240ba700542fab81fe64eadef0959708d1c48ead70bead8889d98bf63dc-ol8_x86_64_userspace_ksplice
openssl-1.1.1k-7.ksplice1.el8_6.x86_64.rpm7470c5ec24b0b0073b1cba59d9044ea3f03b35d1ac97a08108367b2725d0ab35-ol8_x86_64_userspace_ksplice
openssl-devel-1.1.1k-7.ksplice1.el8_6.i686.rpm5f572606ba780972c6a1a6ef231120769857cfcf5664e8b5a937cc8320c586ac-ol8_x86_64_userspace_ksplice
openssl-devel-1.1.1k-7.ksplice1.el8_6.x86_64.rpmdf6536a645fbe86b989a9586ad48e8be8e7f595f0f0c8978d8797e58ed99fa68-ol8_x86_64_userspace_ksplice
openssl-libs-1.1.1k-7.ksplice1.el8_6.i686.rpm45e68fd6b31abaae84df6ac2e37d7257165c10bfcda01487443e071a943bbf18-ol8_x86_64_userspace_ksplice
openssl-libs-1.1.1k-7.ksplice1.el8_6.x86_64.rpm508ccd24ddbe8cfe56655ae36f8d8aba84a88747d790327c74b22eb4f8871a5d-ol8_x86_64_userspace_ksplice
openssl-perl-1.1.1k-7.ksplice1.el8_6.x86_64.rpm90004120cbe5b66feae2efb54b88638d6b3705c757256e36b6bbc7467bd6180d-ol8_x86_64_userspace_ksplice



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete