ELSA-2025-28041
- ULN >
- Oracle Linux Errata repository >
- ELSA-2025-28041
ELSA-2025-28041 - openssl security update
| Type: | SECURITY |
| Impact: | MODERATE |
| Release Date: | 2025-12-09 |
Description
[3.5.1-4.0.1]
- Replace upstream references [Orabug: 34340177]
- Update FIPS provider name [Orabug: 35824276]
[1:3.5.1-4]
- Fix CVE-2025-9230
Resolves: RHEL-115885
[1:3.5.1-3]
- Add custom define to disable symbol versioning in downstream patched code
Also add stricter Suggests for openssl-fips-provider
Resolves: RHEL-101548
- Fix Requires/Provider to fix default install of fips providers
Resolves: RHEL-105010
[1:3.5.1-2]
- Move fips.so to a seprate subpackage
Reverts FIPS self test for SLH-DSA
Add Suggests to try to prefer the openssl-fips-provider package
over the fips-provider-next package by default
Revolves: RHEL-102408
Related: RHEL-80811
[1:3.5.1-1]
- Rebasing to OpenSSL 3.5.1
Resolves: RHEL-90350
Resolves: RHEL-95613
Resolves: RHEL-97796
Resolves: RHEL-99353
Resolves: RHEL-100168
[1:3.5.0-8]
- rebuilt
Related: RHEL-80811
[1:3.5.0-7]
- rebuilt
Related: RHEL-80811
[1:3.5.0-6]
- rebuilt
Related: RHEL-80811
[1:3.5.0-5]
- Compact patches for better maintainability
Related: RHEL-80811
- Make hybrid MLKEM work with our FIPS provider (3.0.7)
Resolves: RHEL-94614
[1:3.5.0-4]
- Fix regressions caused by rebase to OpenSSL 3.5
Related: RHEL-80811
- Fix UEFI builds on double function definitions
Resolves: RHEL-93168
Related CVEs
| CVE-2025-9230 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 10 (aarch64) | openssl-3.5.1-4.0.1.ksplice1.el10_1.src.rpm | 9cc627106ea58b2a5f137581348d4c33de1e05d949cd80e43bd0c556ef2f7289 | - | ol10_aarch64_userspace_ksplice |
| openssl-3.5.1-4.0.1.ksplice1.el10_1.aarch64.rpm | 24dc5842d1afd30dec8e47dbb26170c7ddf458e77eee44f0c03faf1017a16dc5 | - | ol10_aarch64_userspace_ksplice | |
| openssl-devel-3.5.1-4.0.1.ksplice1.el10_1.aarch64.rpm | 0c2f2d5e15f13f3309b787a5b12b83256b03cc2f13f6a63cebbf25fab0abbfb9 | - | ol10_aarch64_userspace_ksplice | |
| openssl-libs-3.5.1-4.0.1.ksplice1.el10_1.aarch64.rpm | 5b6a9b802e2077d86d4cb413b2779072cdc9b4a766c5a84c7a1b61c76e91df39 | - | ol10_aarch64_userspace_ksplice | |
| openssl-perl-3.5.1-4.0.1.ksplice1.el10_1.aarch64.rpm | 335f8eb50ef35824e06b1f0dde808ab080007f77eb1b0d21d421a28c9962ff9f | - | ol10_aarch64_userspace_ksplice | |
| Oracle Linux 10 (x86_64) | openssl-3.5.1-4.0.1.ksplice1.el10_1.src.rpm | 9cc627106ea58b2a5f137581348d4c33de1e05d949cd80e43bd0c556ef2f7289 | - | ol10_x86_64_userspace_ksplice |
| openssl-3.5.1-4.0.1.ksplice1.el10_1.x86_64.rpm | 0f167d7c83f3995ee6bb7de8c2def8b01f11cb2b09fc0f97a0cb1fd5458f1f0c | - | ol10_x86_64_userspace_ksplice | |
| openssl-devel-3.5.1-4.0.1.ksplice1.el10_1.x86_64.rpm | da347eed95b425528a9a94c7f8e6d1374ed5c018523715879473076394703c7a | - | ol10_x86_64_userspace_ksplice | |
| openssl-libs-3.5.1-4.0.1.ksplice1.el10_1.x86_64.rpm | 0b7274b285f27a2ca28e2d5ee0d5bedcdc30067479a8c7dc46e5976ba162dcb5 | - | ol10_x86_64_userspace_ksplice | |
| openssl-perl-3.5.1-4.0.1.ksplice1.el10_1.x86_64.rpm | 1f62fe50bb5e570a7cba834770753eb45e7eddca16f3e480b8679d2aa42912a1 | - | ol10_x86_64_userspace_ksplice | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
