[ALSA-2022:5326] Low: compat-openssl10 security update
Type:
security
Severity:
low
Release date:
2022-07-21
Description:
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. compat-openssl10 provides the legacy 1.0 version of OpenSSL for use with older binaries. Security Fix(es): * compat-openssl10: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (CVE-2022-0778) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 compat-openssl10-1.0.2o-4.el8_6.aarch64.rpm f61f47a4da43fefc172d11c37a27b55b05f876c518b91a6fc26d4a714c9b69ff
i686 compat-openssl10-1.0.2o-4.el8_6.i686.rpm 7e169daaddfd20101f2c7646063cc16478547e17626eac099f1faba5e92fbe00
ppc64le compat-openssl10-1.0.2o-4.el8_6.ppc64le.rpm 0fa345dc427b778580d6dc0e195bef404bc005b1e56119fd4490bbee0869a074
x86_64 compat-openssl10-1.0.2o-4.el8_6.x86_64.rpm 8e678f0977630f6f29b24c0d5729d85a9602874a7d93037d9b96d1a894008f46
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.