ELSA-2025-1330

ULN >
Oracle Linux Errata repository >
ELSA-2025-1330

ELSA-2025-1330 - openssl security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2025-02-12

Description

[3.2.2-6.0.1.1]
- Enable openssl-fips-provider dependency [Orabug: 36504822]
- Temporary disable openssl-fips-provider dependency [Orabug: 36504822]
- Replace upstream references [Orabug: 34340177]

[1:3.2.2-6.1]
- RFC7250 handshakes with unauthenticated servers don't abort as expected (CVE-2024-12797)
Resolves: RHEL-76755

Related CVEs

CVE-2024-12797

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	openssl-3.2.2-6.0.1.el9_5.1.src.rpm	52cc5023da162863cc974dcc6c1fb210	-	ol9_aarch64_appstream
	openssl-3.2.2-6.0.1.el9_5.1.src.rpm	52cc5023da162863cc974dcc6c1fb210	-	ol9_aarch64_baseos_latest
	openssl-3.2.2-6.0.1.el9_5.1.src.rpm	52cc5023da162863cc974dcc6c1fb210	-	ol9_aarch64_u5_baseos_patch
	openssl-3.2.2-6.0.1.el9_5.1.aarch64.rpm	c710c52dbeefed6368eb621dc3c053e0	-	ol9_aarch64_baseos_latest
	openssl-3.2.2-6.0.1.el9_5.1.aarch64.rpm	c710c52dbeefed6368eb621dc3c053e0	-	ol9_aarch64_u5_baseos_patch
	openssl-devel-3.2.2-6.0.1.el9_5.1.aarch64.rpm	2f68a8edda8881d4920b5570a04ad7e2	-	ol9_aarch64_appstream
	openssl-libs-3.2.2-6.0.1.el9_5.1.aarch64.rpm	4f359866eeab7cd0d65673e904f49402	-	ol9_aarch64_baseos_latest
	openssl-libs-3.2.2-6.0.1.el9_5.1.aarch64.rpm	4f359866eeab7cd0d65673e904f49402	-	ol9_aarch64_u5_baseos_patch
	openssl-perl-3.2.2-6.0.1.el9_5.1.aarch64.rpm	0e18964c6bb3dfd10431634ce754813b	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	openssl-3.2.2-6.0.1.el9_5.1.src.rpm	52cc5023da162863cc974dcc6c1fb210	-	ol9_x86_64_appstream
	openssl-3.2.2-6.0.1.el9_5.1.src.rpm	52cc5023da162863cc974dcc6c1fb210	-	ol9_x86_64_baseos_latest
	openssl-3.2.2-6.0.1.el9_5.1.src.rpm	52cc5023da162863cc974dcc6c1fb210	-	ol9_x86_64_u5_baseos_patch
	openssl-3.2.2-6.0.1.el9_5.1.x86_64.rpm	c955c680cce99a0c529374fbedc31e06	-	ol9_x86_64_baseos_latest
	openssl-3.2.2-6.0.1.el9_5.1.x86_64.rpm	c955c680cce99a0c529374fbedc31e06	-	ol9_x86_64_u5_baseos_patch
	openssl-devel-3.2.2-6.0.1.el9_5.1.i686.rpm	dc761ac3c6fc04e47ab2909fac3a5ee9	-	ol9_x86_64_appstream
	openssl-devel-3.2.2-6.0.1.el9_5.1.x86_64.rpm	3fc2a7113581c9865545700e3f6c44e5	-	ol9_x86_64_appstream
	openssl-libs-3.2.2-6.0.1.el9_5.1.i686.rpm	bbd2f020faa2bb6645132598883b37d9	-	ol9_x86_64_baseos_latest
	openssl-libs-3.2.2-6.0.1.el9_5.1.i686.rpm	bbd2f020faa2bb6645132598883b37d9	-	ol9_x86_64_u5_baseos_patch
	openssl-libs-3.2.2-6.0.1.el9_5.1.x86_64.rpm	ec91d0ffaac10778b0cd979321835c46	-	ol9_x86_64_baseos_latest
	openssl-libs-3.2.2-6.0.1.el9_5.1.x86_64.rpm	ec91d0ffaac10778b0cd979321835c46	-	ol9_x86_64_u5_baseos_patch
	openssl-perl-3.2.2-6.0.1.el9_5.1.x86_64.rpm	aecd25448aba3bd7f4aedeab65079a33	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

Oracle customers - enter a support request
Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691