ALSA-2024:9333

[ALSA-2024:9333] Low: openssl security update

Type:

security

Severity:

low

Release date:

2024-11-20

Description:

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.  

Security Fix(es):  

  * openssl: Unbounded memory growth with session handling in TLSv1.3 (CVE-2024-2511)
  * openssl: Excessive time spent checking DSA keys and parameters (CVE-2024-4603)
  * openssl: Use After Free with SSL_free_buffers (CVE-2024-4741)
  * openssl: SSL_select_next_proto buffer overread (CVE-2024-5535)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.  

Additional Changes:  

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	openssl-perl-3.2.2-6.el9_5.aarch64.rpm	b142e728ee4201cecf4c6aa253da958ef8641f14b583e56e0b1349ff3e9260c9
aarch64	openssl-libs-3.2.2-6.el9_5.aarch64.rpm	bd7518eedd834d8410ae76c26cbbd34278a53dd0412704719dfaf571d0d393df
aarch64	openssl-3.2.2-6.el9_5.aarch64.rpm	c05f3dae46fbe4e2049a1fb32eb4a9d28a52781f4e91b667bfa0b31c5728676e
aarch64	openssl-devel-3.2.2-6.el9_5.aarch64.rpm	d30a838df7eaac8a3acde30575a3b63632515e2172b46e66e787d5a2d13e5429
i686	openssl-libs-3.2.2-6.el9_5.i686.rpm	df4ede3753246453c095d79528b522594795a6d489f556b49c74f90c0deb2705
i686	openssl-devel-3.2.2-6.el9_5.i686.rpm	e48c8b45ba105857b6553275941ef0dce79a6eb184c3de9c8e2a5cda2e3839bc
ppc64le	openssl-3.2.2-6.el9_5.ppc64le.rpm	0e269bc9bec3cb63f439b149bc22cb521bd924ba0e089033e0cd6a3c1497da41
ppc64le	openssl-devel-3.2.2-6.el9_5.ppc64le.rpm	172b60ca821b84cb6e47102fd4f4a411a4f50f2b54cb4c9aa75fae06e03d8792
ppc64le	openssl-libs-3.2.2-6.el9_5.ppc64le.rpm	4e3788a2ac14125009d9df1525db92ed9c83fae375ff38a786d219e9edd1e7a4
ppc64le	openssl-perl-3.2.2-6.el9_5.ppc64le.rpm	649b020c4f909d9aeba02b0b96f0706ed96833aac6a00c633037d3883af1fb17
s390x	openssl-devel-3.2.2-6.el9_5.s390x.rpm	2b201baf5a6d06efb00bd1723d17ca4a97abe5ca123a1724cef1854b84c980e8
s390x	openssl-libs-3.2.2-6.el9_5.s390x.rpm	524aa087777bdb2a8f05ac0d97207e7473d2b2b29983cf5fcb1b5d1f7ba63699
s390x	openssl-perl-3.2.2-6.el9_5.s390x.rpm	7efe1ba69e120bda1c7e2f69e9910d4414c567e0665fb5237d3dfa5ccd0ca395
s390x	openssl-3.2.2-6.el9_5.s390x.rpm	aaf07944124036b162dee20b545999c756678f04e322e21d9f8d5179401ddce3
x86_64	openssl-devel-3.2.2-6.el9_5.x86_64.rpm	04272c72c59991d2f21c7a4d33df601ac57a489887fa7094a018a430aff60dcc
x86_64	openssl-3.2.2-6.el9_5.x86_64.rpm	2336f095135bed40a2d9c4a5b2901b0c8b408837776c22b06847f822d94ca9e8
x86_64	openssl-perl-3.2.2-6.el9_5.x86_64.rpm	3f10e024443c609f824c1b7167e9d0a70928c1f8914c7c217589e7a2de28de7e
x86_64	openssl-libs-3.2.2-6.el9_5.x86_64.rpm	6a50ff949f63b349f33c8522955351c696af7a2f0796279caca6903dc8f6af8f

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.