Stay Secure with the Latest Linux Advisories

security advisorybuffer overflowFedora

Fedora 37: FEDORA-2022-0f1d2e0537 Moderate: OpenSSL Buffer Overflow

Security fix for CVE-2022-3602 and CVE-2022-3786. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-0f1d2e0537 2022-11-02 02:01:02.615284 --------------------------------------------------------------------------------Name : openssl Product : Fedora 37 Version : 3.0.5 Release : 3.fc37 URL : https://www.openssl.org:443/ Summary : Utilities from the general purpose cryptography library with TLS implementation Description : The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2022-3602 and CVE-2022-3786 --------------------------------------------------------------------------------ChangeLog: * Tue Nov 1 2022 Dmitry Belyavskiy - 1:3.0.5-3 - CVE-2022-3602: X.509 Email Address Buffer Overflow - CVE-2022-3786: X.509 Email Address Buffer Overflow Resolves: CVE-2022-3602 Resolves: CVE-2022-3786 --------------------------------------------------------------------------------References: [ 1 ] Bug #2137723 - CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow https://bugzilla.redhat.com/show_bug.cgi?id=2137723 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-0f1d2e0537' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Urgent patch for openssl memory corruption vulnerability on Fedora 37 bolsters overall system integrity.. Fedora 37 OpenSSL Update, OpenSSL Buffer Overflow, Fedora Security Advisory. . LinuxSecurity.com Team

Nov 01, 2022 Fedora