ELSA-2023-12213

ULN >
Oracle Linux Errata repository >
ELSA-2023-12213

ELSA-2023-12213 - openssl security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-03-28

Description

[1:1.1.1k-9]
- Fixed Timing Oracle in RSA Decryption
Resolves: CVE-2022-4304
- Fixed Double free after calling PEM_read_bio_ex
Resolves: CVE-2022-4450
- Fixed Use-after-free following BIO_new_NDEF
Resolves: CVE-2023-0215
- Fixed X.400 address type confusion in X.509 GeneralName
Resolves: CVE-2023-0286

[1:1.1.1k-8]
- Fix no-ec build
Resolves: rhbz#2071020

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-9.ksplice1.el8_7.src.rpm	d09adbe1535e65ee1e51f5720319af249f502b584153c10c19c301dda355c535	-	ol8_aarch64_userspace_ksplice
	openssl-1.1.1k-9.ksplice1.el8_7.aarch64.rpm	69a0405661cb4653415a25701e441887299042deb51b947789b84717459a445b	-	ol8_aarch64_userspace_ksplice
	openssl-debugsource-1.1.1k-9.ksplice1.el8_7.aarch64.rpm	376509033425c075f9b5c74c844cc97176c6817c2567e638c1590dca93612919	-	ol8_aarch64_userspace_ksplice
	openssl-devel-1.1.1k-9.ksplice1.el8_7.aarch64.rpm	d129107f61938fa1c0e16d163c1522c5d5622c83b4c093882518ca3c042247ab	-	ol8_aarch64_userspace_ksplice
	openssl-libs-1.1.1k-9.ksplice1.el8_7.aarch64.rpm	3ae3b6b7c44c0e242774533ff1b6e095ae213743f3dc9ed5c2aa98f71695daf1	-	ol8_aarch64_userspace_ksplice
	openssl-perl-1.1.1k-9.ksplice1.el8_7.aarch64.rpm	58359a75bdabb0859b44f874a326e99cdc58ea4df0af3b08aac84b85e53ae273	-	ol8_aarch64_userspace_ksplice
	openssl-static-1.1.1k-9.ksplice1.el8_7.aarch64.rpm	af9007fe0c7d7adcab1638028bb37756e0ffbc250734e90de15a11cf05d32b8a	-	ol8_aarch64_userspace_ksplice

Oracle Linux 8 (x86_64)	openssl-1.1.1k-9.ksplice1.el8_7.src.rpm	274fb1d2065a078d6f55e1c819abbba48c9fbe2c5d155ba4f3f03c2fa7738741	-	ol8_x86_64_userspace_ksplice
	openssl-1.1.1k-9.ksplice1.el8_7.x86_64.rpm	ab6241346df551d98b7bbfa6d2074958833fc0e83e0302f267d895ffc00a3522	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-9.ksplice1.el8_7.i686.rpm	a94a3bbf96052eb75a7c32ed322dd04a3c4e072155c197ac13dba0f6540e4487	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-9.ksplice1.el8_7.x86_64.rpm	0fd33c101f76b001052ffcdbbdaa83a0606a5e5921557797e7eeed0c1be05be7	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-9.ksplice1.el8_7.i686.rpm	c748f3940a6b144f791c33a856df6a1b1275ac992e4c4c099709e840dbd3abbc	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-9.ksplice1.el8_7.x86_64.rpm	b64a68394f4b0d4867fab8efe4a11b1d530c184623779d0d0f698de9c0186c47	-	ol8_x86_64_userspace_ksplice
	openssl-perl-1.1.1k-9.ksplice1.el8_7.x86_64.rpm	f5e7a4ff1bc4fd4a617f5592f4038dacc52a674c97e58d627dcedb98bc4a4d24	-	ol8_x86_64_userspace_ksplice

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691