Oracle8: ELSA-2022-5818: openssl Moderate Security Update | LinuxSe...

What Are You Looking For?

Popular Tags

Contribute
Oracle Linux Security Advisory ELSA-2022-5818

https://linux.oracle.com/errata/ELSA-2022-5818.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
openssl-1.1.1k-7.el8_6.x86_64.rpm
openssl-devel-1.1.1k-7.el8_6.i686.rpm
openssl-devel-1.1.1k-7.el8_6.x86_64.rpm
openssl-libs-1.1.1k-7.el8_6.i686.rpm
openssl-libs-1.1.1k-7.el8_6.x86_64.rpm
openssl-perl-1.1.1k-7.el8_6.x86_64.rpm

aarch64:
openssl-1.1.1k-7.el8_6.aarch64.rpm
openssl-devel-1.1.1k-7.el8_6.aarch64.rpm
openssl-libs-1.1.1k-7.el8_6.aarch64.rpm
openssl-perl-1.1.1k-7.el8_6.aarch64.rpm


SRPMS:
https://oss.oracle.com/ol8/SRPMS-updates/openssl-1.1.1k-7.el8_6.src.rpm

Related CVEs:

CVE-2022-1292
CVE-2022-2068
CVE-2022-2097




Description of changes:

[1:1.1.1k-7]
- Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86
  Resolves: CVE-2022-2097
- Update expired certificates used in the testsuite
  Resolves: rhbz#2100554
- Fix CVE-2022-1292: openssl: c_rehash script allows command injection
  Resolves: rhbz#2090371
- Fix CVE-2022-2068: the c_rehash script allows command injection
  Resolves: rhbz#2098278


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle8: ELSA-2022-5818: openssl Moderate Security Update

Summary

Description of changes: [1:1.1.1k-7] - Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86 Resolves: CVE-2022-2097 - Update expired certificates used in the testsuite Resolves: rhbz#2100554 - Fix CVE-2022-1292: openssl: c_rehash script allows command injection Resolves: rhbz#2090371 - Fix CVE-2022-2068: the c_rehash script allows command injection Resolves: rhbz#2098278

i386

x86_64

openssl-1.1.1k-7.el8_6.x86_64.rpm openssl-devel-1.1.1k-7.el8_6.i686.rpm openssl-devel-1.1.1k-7.el8_6.x86_64.rpm openssl-libs-1.1.1k-7.el8_6.i686.rpm openssl-libs-1.1.1k-7.el8_6.x86_64.rpm openssl-perl-1.1.1k-7.el8_6.x86_64.rpm aarch64: openssl-1.1.1k-7.el8_6.aarch64.rpm openssl-devel-1.1.1k-7.el8_6.aarch64.rpm openssl-libs-1.1.1k-7.el8_6.aarch64.rpm openssl-perl-1.1.1k-7.el8_6.aarch64.rpm

SRPMS

https://oss.oracle.com/ol8/SRPMS-updates/openssl-1.1.1k-7.el8_6.src.rpm

Severity
Related CVEs: CVE-2022-1292 CVE-2022-2068 CVE-2022-2097

News

Advisories

HOWTOs

Features

Keeping Your Private Files Private: An Introduction to GNU Privacy Guard
Complete Guide to Ethical Hacking
Authoritative Guide on Linux Disk Encryption
Linux Database Security Tips
Everything You Need To Know About Open Source Network Monitoring Tools

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy