ELSA-2024-0310
- ULN >
- Oracle Linux Errata repository >
- ELSA-2024-0310
ELSA-2024-0310 - openssl security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2024-01-22 |
Description
[1:3.0.7-25.0.1]
- Replace upstream references [Orabug: 34340177]
[1:3.0.7-25]
- Provide relevant diagnostics when FIPS checksum is corrupted
Resolves: RHEL-5317
- Don't limit using SHA1 in KDFs in non-FIPS mode.
Resolves: RHEL-5295
- Provide empty evp_properties section in main OpenSSL configuration file
Resolves: RHEL-11439
- Avoid implicit function declaration when building openssl
Resolves: RHEL-1780
- Forbid explicit curves when created via EVP_PKEY_fromdata
Resolves: RHEL-5304
- AES-SIV cipher implementation contains a bug that causes it to ignore empty
associated data entries (CVE-2023-2975)
Resolves: RHEL-5302
- Excessive time spent checking DH keys and parameters (CVE-2023-3446)
Resolves: RHEL-5306
- Excessive time spent checking DH q parameter value (CVE-2023-3817)
Resolves: RHEL-5308
- Fix incorrect cipher key and IV length processing (CVE-2023-5363)
Resolves: RHEL-13251
- Switch explicit FIPS indicator for RSA-OAEP to approved following
clarification with CMVP
Resolves: RHEL-14083
- Backport the check required by SP800-56Br2 6.4.1.2.1 (3.c)
Resolves: RHEL-14083
- Add missing ECDH Public Key Check in FIPS mode
Resolves: RHEL-15990
- Excessive time spent in DH check/generation with large Q parameter value (CVE-2023-5678)
Resolves: RHEL-15954
Related CVEs
| CVE-2023-5363 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | openssl-3.0.7-25.0.1.el9_3.src.rpm | 4682595b52ad8b25f8933fd5fc8caf9b | - | ol9_aarch64_appstream |
| openssl-3.0.7-25.0.1.el9_3.src.rpm | 4682595b52ad8b25f8933fd5fc8caf9b | - | ol9_aarch64_baseos_latest | |
| openssl-3.0.7-25.0.1.el9_3.aarch64.rpm | 9d72974bfcdaa7977d34b5f46eb814ed | - | ol9_aarch64_baseos_latest | |
| openssl-devel-3.0.7-25.0.1.el9_3.aarch64.rpm | 2200ee0fd5496166cf59ba4a5466a743 | - | ol9_aarch64_appstream | |
| openssl-libs-3.0.7-25.0.1.el9_3.aarch64.rpm | 52a085469d203d49c76f12cb2c008052 | - | ol9_aarch64_baseos_latest | |
| openssl-perl-3.0.7-25.0.1.el9_3.aarch64.rpm | 47208a1376f3e31a2547830e3a0cdad2 | - | ol9_aarch64_appstream | |
| Oracle Linux 9 (x86_64) | openssl-3.0.7-25.0.1.el9_3.src.rpm | 4682595b52ad8b25f8933fd5fc8caf9b | - | ol9_x86_64_appstream |
| openssl-3.0.7-25.0.1.el9_3.src.rpm | 4682595b52ad8b25f8933fd5fc8caf9b | - | ol9_x86_64_baseos_latest | |
| openssl-3.0.7-25.0.1.el9_3.x86_64.rpm | 18de26bea3d868f2539122304c16452f | - | ol9_x86_64_baseos_latest | |
| openssl-devel-3.0.7-25.0.1.el9_3.i686.rpm | e4cb17ba75e049cbef909976d73faf8f | - | ol9_x86_64_appstream | |
| openssl-devel-3.0.7-25.0.1.el9_3.x86_64.rpm | d1794fd495a8088651d32d10097ab739 | - | ol9_x86_64_appstream | |
| openssl-libs-3.0.7-25.0.1.el9_3.i686.rpm | 9c1d739772c8c95a3555dd2d08e5284e | - | ol9_x86_64_baseos_latest | |
| openssl-libs-3.0.7-25.0.1.el9_3.x86_64.rpm | cee44bd68976d37c34d1fdc9afc97704 | - | ol9_x86_64_baseos_latest | |
| openssl-perl-3.0.7-25.0.1.el9_3.x86_64.rpm | 7ae18549c88cbeab67cd2b736ce0a142 | - | ol9_x86_64_appstream | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
