ELSA-2023-1405

ULN >
Oracle Linux Errata repository >
ELSA-2023-1405

ELSA-2023-1405 - openssl security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-03-22

Description

[1:1.1.1k-9]
- Fixed Timing Oracle in RSA Decryption
Resolves: CVE-2022-4304
- Fixed Double free after calling PEM_read_bio_ex
Resolves: CVE-2022-4450
- Fixed Use-after-free following BIO_new_NDEF
Resolves: CVE-2023-0215
- Fixed X.400 address type confusion in X.509 GeneralName
Resolves: CVE-2023-0286

[1:1.1.1k-8]
- Fix no-ec build
Resolves: rhbz#2071020

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_aarch64_baseos_latest
	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_aarch64_u7_baseos_patch
	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_aarch64_u8_baseos_base
	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_aarch64_u9_baseos_base
	openssl-1.1.1k-9.el8_7.aarch64.rpm	74299c1129b039070ed77f986a8304a8df5a647f2529fd3dc5076c39e606d372	-	ol8_aarch64_baseos_latest
	openssl-1.1.1k-9.el8_7.aarch64.rpm	74299c1129b039070ed77f986a8304a8df5a647f2529fd3dc5076c39e606d372	-	ol8_aarch64_u7_baseos_patch
	openssl-1.1.1k-9.el8_7.aarch64.rpm	74299c1129b039070ed77f986a8304a8df5a647f2529fd3dc5076c39e606d372	-	ol8_aarch64_u8_baseos_base
	openssl-1.1.1k-9.el8_7.aarch64.rpm	74299c1129b039070ed77f986a8304a8df5a647f2529fd3dc5076c39e606d372	-	ol8_aarch64_u9_baseos_base
	openssl-devel-1.1.1k-9.el8_7.aarch64.rpm	b8fe2ff7c302727b51dd0ad750e47887e0473b0f40062b81d0c5bee863aec866	-	ol8_aarch64_baseos_latest
	openssl-devel-1.1.1k-9.el8_7.aarch64.rpm	b8fe2ff7c302727b51dd0ad750e47887e0473b0f40062b81d0c5bee863aec866	-	ol8_aarch64_u7_baseos_patch
	openssl-devel-1.1.1k-9.el8_7.aarch64.rpm	b8fe2ff7c302727b51dd0ad750e47887e0473b0f40062b81d0c5bee863aec866	-	ol8_aarch64_u8_baseos_base
	openssl-devel-1.1.1k-9.el8_7.aarch64.rpm	b8fe2ff7c302727b51dd0ad750e47887e0473b0f40062b81d0c5bee863aec866	-	ol8_aarch64_u9_baseos_base
	openssl-libs-1.1.1k-9.el8_7.aarch64.rpm	ddfa015656093ed1cba1bc70472c0834175c71e877e656e04e4c65b04a35ce81	-	ol8_aarch64_baseos_latest
	openssl-libs-1.1.1k-9.el8_7.aarch64.rpm	ddfa015656093ed1cba1bc70472c0834175c71e877e656e04e4c65b04a35ce81	-	ol8_aarch64_u7_baseos_patch
	openssl-libs-1.1.1k-9.el8_7.aarch64.rpm	ddfa015656093ed1cba1bc70472c0834175c71e877e656e04e4c65b04a35ce81	-	ol8_aarch64_u8_baseos_base
	openssl-libs-1.1.1k-9.el8_7.aarch64.rpm	ddfa015656093ed1cba1bc70472c0834175c71e877e656e04e4c65b04a35ce81	-	ol8_aarch64_u9_baseos_base
	openssl-perl-1.1.1k-9.el8_7.aarch64.rpm	4b808375d2711a59d770514c84cbf356e35830ad2ddbaf4707da3dd63f6cecb6	-	ol8_aarch64_baseos_latest
	openssl-perl-1.1.1k-9.el8_7.aarch64.rpm	4b808375d2711a59d770514c84cbf356e35830ad2ddbaf4707da3dd63f6cecb6	-	ol8_aarch64_u7_baseos_patch
	openssl-perl-1.1.1k-9.el8_7.aarch64.rpm	4b808375d2711a59d770514c84cbf356e35830ad2ddbaf4707da3dd63f6cecb6	-	ol8_aarch64_u8_baseos_base
	openssl-perl-1.1.1k-9.el8_7.aarch64.rpm	4b808375d2711a59d770514c84cbf356e35830ad2ddbaf4707da3dd63f6cecb6	-	ol8_aarch64_u9_baseos_base

Oracle Linux 8 (x86_64)	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_x86_64_baseos_latest
	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_x86_64_u7_baseos_patch
	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_x86_64_u8_baseos_base
	openssl-1.1.1k-9.el8_7.src.rpm	eecbee95bda111285ab393d2e5ecb2feb5cab5235aad7ea36edddc31183ccf53	-	ol8_x86_64_u9_baseos_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.1.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.2.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.3.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.4.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.5.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.6.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.7.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.8.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_23.1.9.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	ol8_x86_64_baseos_latest
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	ol8_x86_64_u7_baseos_patch
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	ol8_x86_64_u8_baseos_base
	openssl-1.1.1k-9.el8_7.x86_64.rpm	5d36edd2549c8934b0f18725dae6b72f807f4338b5df6f862e633c149cc4e9e5	-	ol8_x86_64_u9_baseos_base
	openssl-devel-1.1.1k-9.el8_7.i686.rpm	a90ca1e05820ee383a2b290b62c4923177a1b2a5f0c564e3ee47a06a0fa53a54	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1k-9.el8_7.i686.rpm	a90ca1e05820ee383a2b290b62c4923177a1b2a5f0c564e3ee47a06a0fa53a54	-	ol8_x86_64_u7_baseos_patch
	openssl-devel-1.1.1k-9.el8_7.i686.rpm	a90ca1e05820ee383a2b290b62c4923177a1b2a5f0c564e3ee47a06a0fa53a54	-	ol8_x86_64_u8_baseos_base
	openssl-devel-1.1.1k-9.el8_7.i686.rpm	a90ca1e05820ee383a2b290b62c4923177a1b2a5f0c564e3ee47a06a0fa53a54	-	ol8_x86_64_u9_baseos_base
	openssl-devel-1.1.1k-9.el8_7.x86_64.rpm	09f4471e2b022d1ecb3104804b8cbe324b8e16ba39f74799c36717be9114488d	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1k-9.el8_7.x86_64.rpm	09f4471e2b022d1ecb3104804b8cbe324b8e16ba39f74799c36717be9114488d	-	ol8_x86_64_u7_baseos_patch
	openssl-devel-1.1.1k-9.el8_7.x86_64.rpm	09f4471e2b022d1ecb3104804b8cbe324b8e16ba39f74799c36717be9114488d	-	ol8_x86_64_u8_baseos_base
	openssl-devel-1.1.1k-9.el8_7.x86_64.rpm	09f4471e2b022d1ecb3104804b8cbe324b8e16ba39f74799c36717be9114488d	-	ol8_x86_64_u9_baseos_base
	openssl-libs-1.1.1k-9.el8_7.i686.rpm	cb4cdecfb98252df2efbda4948325a85268d303ca4a33aeaa4c41caeaf580a46	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1k-9.el8_7.i686.rpm	cb4cdecfb98252df2efbda4948325a85268d303ca4a33aeaa4c41caeaf580a46	-	ol8_x86_64_u7_baseos_patch
	openssl-libs-1.1.1k-9.el8_7.i686.rpm	cb4cdecfb98252df2efbda4948325a85268d303ca4a33aeaa4c41caeaf580a46	-	ol8_x86_64_u8_baseos_base
	openssl-libs-1.1.1k-9.el8_7.i686.rpm	cb4cdecfb98252df2efbda4948325a85268d303ca4a33aeaa4c41caeaf580a46	-	ol8_x86_64_u9_baseos_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.1.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.2.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.3.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.4.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.5.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.6.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.7.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.8.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_23.1.9.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	ol8_x86_64_u7_baseos_patch
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	ol8_x86_64_u8_baseos_base
	openssl-libs-1.1.1k-9.el8_7.x86_64.rpm	9144773d2bf1da671a5810cce7682b625eb5b18e600a5c533be8bec8befd7c6b	-	ol8_x86_64_u9_baseos_base
	openssl-perl-1.1.1k-9.el8_7.x86_64.rpm	84d18fd8a86c73684e6827f566ffac3b737277de3fa3cbec056904b2009d5e4d	-	ol8_x86_64_baseos_latest
	openssl-perl-1.1.1k-9.el8_7.x86_64.rpm	84d18fd8a86c73684e6827f566ffac3b737277de3fa3cbec056904b2009d5e4d	-	ol8_x86_64_u7_baseos_patch
	openssl-perl-1.1.1k-9.el8_7.x86_64.rpm	84d18fd8a86c73684e6827f566ffac3b737277de3fa3cbec056904b2009d5e4d	-	ol8_x86_64_u8_baseos_base
	openssl-perl-1.1.1k-9.el8_7.x86_64.rpm	84d18fd8a86c73684e6827f566ffac3b737277de3fa3cbec056904b2009d5e4d	-	ol8_x86_64_u9_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691