ELSA-2023-7877

ULN >
Oracle Linux Errata repository >
ELSA-2023-7877

ELSA-2023-7877 - openssl security update

Type:	SECURITY
Impact:	LOW
Release Date:	2023-12-18

Description

[1:1.1.1k-12]
- Backport implicit rejection mechanism for RSA PKCS#1 v1.5 to RHEL-8 series
(a proper fix for CVE-2020-25659)
Resolves: RHEL-17696

[1:1.1.1k-11]
- Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking
excessively long X9.42 DH keys or parameters may be very slow
Resolves: RHEL-16538

[1:1.1.1k-10]
- Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters
Resolves: RHEL-14245
- Fix CVE-2023-3817: Excessive time spent checking DH q parameter value
Resolves: RHEL-14239

Related CVEs

CVE-2023-3446

CVE-2023-3817

CVE-2023-5678

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-12.el8_9.src.rpm	02544517729831d06dde4dd7cb347522354e3e8a817a5b3cbc02c2ea81dded27	-	ol8_aarch64_baseos_latest
	openssl-1.1.1k-12.el8_9.src.rpm	02544517729831d06dde4dd7cb347522354e3e8a817a5b3cbc02c2ea81dded27	-	ol8_aarch64_u10_baseos_base
	openssl-1.1.1k-12.el8_9.src.rpm	02544517729831d06dde4dd7cb347522354e3e8a817a5b3cbc02c2ea81dded27	-	ol8_aarch64_u9_baseos_patch
	openssl-1.1.1k-12.el8_9.aarch64.rpm	692c511d61cdd6efcd68bca74f2011419ed9965697700f9b8e5e84d8a1b11991	-	ol8_aarch64_baseos_latest
	openssl-1.1.1k-12.el8_9.aarch64.rpm	692c511d61cdd6efcd68bca74f2011419ed9965697700f9b8e5e84d8a1b11991	-	ol8_aarch64_u10_baseos_base
	openssl-1.1.1k-12.el8_9.aarch64.rpm	692c511d61cdd6efcd68bca74f2011419ed9965697700f9b8e5e84d8a1b11991	-	ol8_aarch64_u9_baseos_patch
	openssl-devel-1.1.1k-12.el8_9.aarch64.rpm	a9fc017b747dbcf49036deebc1a4da30d868e5420551d7e73929813b10086531	-	ol8_aarch64_baseos_latest
	openssl-devel-1.1.1k-12.el8_9.aarch64.rpm	a9fc017b747dbcf49036deebc1a4da30d868e5420551d7e73929813b10086531	-	ol8_aarch64_u10_baseos_base
	openssl-devel-1.1.1k-12.el8_9.aarch64.rpm	a9fc017b747dbcf49036deebc1a4da30d868e5420551d7e73929813b10086531	-	ol8_aarch64_u9_baseos_patch
	openssl-libs-1.1.1k-12.el8_9.aarch64.rpm	b2eb0586181b7b94dc550d3e6021f328fc3792955a5210ebac52b2290f4cb2fa	-	ol8_aarch64_baseos_latest
	openssl-libs-1.1.1k-12.el8_9.aarch64.rpm	b2eb0586181b7b94dc550d3e6021f328fc3792955a5210ebac52b2290f4cb2fa	-	ol8_aarch64_u10_baseos_base
	openssl-libs-1.1.1k-12.el8_9.aarch64.rpm	b2eb0586181b7b94dc550d3e6021f328fc3792955a5210ebac52b2290f4cb2fa	-	ol8_aarch64_u9_baseos_patch
	openssl-perl-1.1.1k-12.el8_9.aarch64.rpm	47841156779e9b129f88c6e3405665c21aa0f293755795e083e97d8b8faee386	-	ol8_aarch64_baseos_latest
	openssl-perl-1.1.1k-12.el8_9.aarch64.rpm	47841156779e9b129f88c6e3405665c21aa0f293755795e083e97d8b8faee386	-	ol8_aarch64_u10_baseos_base
	openssl-perl-1.1.1k-12.el8_9.aarch64.rpm	47841156779e9b129f88c6e3405665c21aa0f293755795e083e97d8b8faee386	-	ol8_aarch64_u9_baseos_patch

Oracle Linux 8 (x86_64)	openssl-1.1.1k-12.el8_9.src.rpm	02544517729831d06dde4dd7cb347522354e3e8a817a5b3cbc02c2ea81dded27	-	ol8_x86_64_baseos_latest
	openssl-1.1.1k-12.el8_9.src.rpm	02544517729831d06dde4dd7cb347522354e3e8a817a5b3cbc02c2ea81dded27	-	ol8_x86_64_u10_baseos_base
	openssl-1.1.1k-12.el8_9.src.rpm	02544517729831d06dde4dd7cb347522354e3e8a817a5b3cbc02c2ea81dded27	-	ol8_x86_64_u9_baseos_patch
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.10.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.11.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.12.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.13.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.14.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.15.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.16.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.17.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.18.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_23.1.19.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_24.1.2.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	exadata_dbserver_24.1.5.0.0_x86_64_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	ol8_x86_64_baseos_latest
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	ol8_x86_64_u10_baseos_base
	openssl-1.1.1k-12.el8_9.x86_64.rpm	bf7c79716bb656ee7235916495f0cd491fbd5de661e6718b52c9bc66bf64b12f	-	ol8_x86_64_u9_baseos_patch
	openssl-devel-1.1.1k-12.el8_9.i686.rpm	6281362886b95cccefb779018506642c30e146dd2d1d1b8eacced947dc8f41db	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1k-12.el8_9.i686.rpm	6281362886b95cccefb779018506642c30e146dd2d1d1b8eacced947dc8f41db	-	ol8_x86_64_u10_baseos_base
	openssl-devel-1.1.1k-12.el8_9.i686.rpm	6281362886b95cccefb779018506642c30e146dd2d1d1b8eacced947dc8f41db	-	ol8_x86_64_u9_baseos_patch
	openssl-devel-1.1.1k-12.el8_9.x86_64.rpm	4b815dfcb05811268a695cf0b369474d92576e56ef80be6f91aa3aef8da5fd21	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1k-12.el8_9.x86_64.rpm	4b815dfcb05811268a695cf0b369474d92576e56ef80be6f91aa3aef8da5fd21	-	ol8_x86_64_u10_baseos_base
	openssl-devel-1.1.1k-12.el8_9.x86_64.rpm	4b815dfcb05811268a695cf0b369474d92576e56ef80be6f91aa3aef8da5fd21	-	ol8_x86_64_u9_baseos_patch
	openssl-libs-1.1.1k-12.el8_9.i686.rpm	8ea113268300508b916a48a08d85f70bd82d9d8d040a9945348dfcfb5e768114	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1k-12.el8_9.i686.rpm	8ea113268300508b916a48a08d85f70bd82d9d8d040a9945348dfcfb5e768114	-	ol8_x86_64_u10_baseos_base
	openssl-libs-1.1.1k-12.el8_9.i686.rpm	8ea113268300508b916a48a08d85f70bd82d9d8d040a9945348dfcfb5e768114	-	ol8_x86_64_u9_baseos_patch
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.10.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.11.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.12.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.13.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.14.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.15.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.16.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.17.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.18.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_23.1.19.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_24.1.2.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	exadata_dbserver_24.1.5.0.0_x86_64_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	ol8_x86_64_u10_baseos_base
	openssl-libs-1.1.1k-12.el8_9.x86_64.rpm	50506c741e4a81667d44c32a7cc8acd639d13b6c2ec10156dd57a254103aa70e	-	ol8_x86_64_u9_baseos_patch
	openssl-perl-1.1.1k-12.el8_9.x86_64.rpm	8bc26d0ba668b3b1aa0503e87847c2816d470e0b4dc27b8f8a042688f4bd19a7	-	ol8_x86_64_baseos_latest
	openssl-perl-1.1.1k-12.el8_9.x86_64.rpm	8bc26d0ba668b3b1aa0503e87847c2816d470e0b4dc27b8f8a042688f4bd19a7	-	ol8_x86_64_u10_baseos_base
	openssl-perl-1.1.1k-12.el8_9.x86_64.rpm	8bc26d0ba668b3b1aa0503e87847c2816d470e0b4dc27b8f8a042688f4bd19a7	-	ol8_x86_64_u9_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691