ELSA-2024-12056

ULN >
Oracle Linux Errata repository >
ELSA-2024-12056

ELSA-2024-12056 - openssl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-01-10

Description

[1:1.1.1k-12]
- Backport implicit rejection mechanism for RSA PKCS#1 v1.5 to RHEL-8 series
(a proper fix for CVE-2020-25659)
Resolves: RHEL-17696

[1:1.1.1k-11]
- Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking
excessively long X9.42 DH keys or parameters may be very slow
Resolves: RHEL-16538

[1:1.1.1k-10]
- Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters
Resolves: RHEL-14245
- Fix CVE-2023-3817: Excessive time spent checking DH q parameter value
Resolves: RHEL-14239

Related CVEs

CVE-2023-5678

CVE-2023-3446

CVE-2023-3817

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-12.ksplice1.el8_9.src.rpm	638586551e3380f618d0b6ff9d8f13f9dc33add958d4bfd3283c688eb3c18a37	-	ol8_aarch64_userspace_ksplice
	openssl-1.1.1k-12.ksplice1.el8_9.aarch64.rpm	5f541e82d0545edc4638a98283424fad5d32de4e925857d8a6c2ce2e77241042	-	ol8_aarch64_userspace_ksplice
	openssl-devel-1.1.1k-12.ksplice1.el8_9.aarch64.rpm	df9cd609d50b1e510cdaa19dd9d9c107903513f1dc9558de9f030d3e4c032568	-	ol8_aarch64_userspace_ksplice
	openssl-libs-1.1.1k-12.ksplice1.el8_9.aarch64.rpm	66d32fa4fa8cae50159a15dcea376c9d410e7b81bd7aed3d19625096fed89cc7	-	ol8_aarch64_userspace_ksplice
	openssl-perl-1.1.1k-12.ksplice1.el8_9.aarch64.rpm	6a70c6693de3b03a23683da1da90cd77e5a32c0c1ea82a3dd9573b867d07e85f	-	ol8_aarch64_userspace_ksplice
	openssl-static-1.1.1k-12.ksplice1.el8_9.aarch64.rpm	8bbd8c65215250871cde2aa9c4682a0e12a0e944e71d2873c120dde90de01b55	-	ol8_aarch64_userspace_ksplice

Oracle Linux 8 (x86_64)	openssl-1.1.1k-12.ksplice1.el8_9.src.rpm	e1e0371a3a35426c67648259043b756da4c35f1dd80e2b9d85ccc997be61367d	-	ol8_x86_64_userspace_ksplice
	openssl-1.1.1k-12.ksplice1.el8_9.x86_64.rpm	11c9af5fef5047c19d47d7102991932dfa5c4f925ff4bf3fa17dd094376a2f5d	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-12.ksplice1.el8_9.i686.rpm	508c8818c8696839e3cc8d22f8a9258f7af02f6150751f31c152eb37d3d2d8c8	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-12.ksplice1.el8_9.x86_64.rpm	349dacbf94425f1d338db1e8dc22b1106405d27ad62ba4874d1430b0dcad3007	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-12.ksplice1.el8_9.i686.rpm	0174f4fa318ecdc2078148862627ee1b9e667533050462d9e5fc420ec890ee16	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-12.ksplice1.el8_9.x86_64.rpm	7537f278c82bf201f6aeda56d9d202bd7552c4a0c4a3b5cb650edff89978c8c6	-	ol8_x86_64_userspace_ksplice
	openssl-perl-1.1.1k-12.ksplice1.el8_9.x86_64.rpm	39a2be94f336d159a6f72e7441d794370e65650499d0203790121dadc9eeb809	-	ol8_x86_64_userspace_ksplice

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691