[ALSA-2022:5818] Moderate: openssl security update
Type:
security
Severity:
moderate
Release date:
2022-08-10
Description:
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. Security Fix(es): * openssl: c_rehash script allows command injection (CVE-2022-1292) * openssl: the c_rehash script allows command injection (CVE-2022-2068) * openssl: AES OCB fails to encrypt some bytes (CVE-2022-2097) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 openssl-devel-1.1.1k-7.el8_6.aarch64.rpm 374f89cc9ac86a5b36f7d1047417ad93a4113a508e6bf3e96838a0a0f3c35998
aarch64 openssl-1.1.1k-7.el8_6.aarch64.rpm 4d14de70d830bd66c7ce2a7992a303f28ac96d171da95c71620ea0ec577be880
aarch64 openssl-perl-1.1.1k-7.el8_6.aarch64.rpm 85e39121154cf6a133af24e5007eca12f3525c691d8756538037072f9cb34d71
aarch64 openssl-libs-1.1.1k-7.el8_6.aarch64.rpm 87f712d1947a1388a480b471dea99deabc0943c5aa01ece0f3528e60e2d97c81
i686 openssl-devel-1.1.1k-7.el8_6.i686.rpm 2276963fbb427be8f42c3a5b0c32988cf071f589aa0fd566199a179bb1d07189
i686 openssl-libs-1.1.1k-7.el8_6.i686.rpm f21c4f589baaf33098252e04ab69105be1692668336359438f54dbbe01149c22
ppc64le openssl-devel-1.1.1k-7.el8_6.ppc64le.rpm 091a6ace6f298f7991b2757e33d15480ad6fa2118756c1f407224ad5cb7b233c
ppc64le openssl-1.1.1k-7.el8_6.ppc64le.rpm 1a5d7cb333b04d97a28b09f288a97bc7782b6c32c972174d722536feb76faeda
ppc64le openssl-libs-1.1.1k-7.el8_6.ppc64le.rpm 698692867e7a2f34f38e4e9c8dfddf4bcc555d5a0d90dcf5eb9b5f1b14a5b7a2
ppc64le openssl-perl-1.1.1k-7.el8_6.ppc64le.rpm abd4e6b9918ab5140fb4aff9fb4330bcacc45940659df28bef63c31bc8d0fc3c
x86_64 openssl-perl-1.1.1k-7.el8_6.x86_64.rpm 24f6a436e13c1ceafe27b51dc6dc7fe66658bb23135642badb08e6614a770fc8
x86_64 openssl-libs-1.1.1k-7.el8_6.x86_64.rpm 37464343d5396d793018ee57b59d24626a9772681b525186c7e65f251026685a
x86_64 openssl-devel-1.1.1k-7.el8_6.x86_64.rpm 49cb90dbf9f65004b1a95b139935eef596a4f4a54010b58dacb5276910638455
x86_64 openssl-1.1.1k-7.el8_6.x86_64.rpm 581b42184f9880c3450bd41e92f7660102684b1f64866d364a8c50498f114e51
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.