[El-errata] ELSA-2023-7877 Low: Oracle Linux 8 openssl security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Dec 20 19:38:17 UTC 2023
Oracle Linux Security Advisory ELSA-2023-7877
http://linux.oracle.com/errata/ELSA-2023-7877.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
openssl-1.1.1k-12.el8_9.x86_64.rpm
openssl-devel-1.1.1k-12.el8_9.i686.rpm
openssl-devel-1.1.1k-12.el8_9.x86_64.rpm
openssl-libs-1.1.1k-12.el8_9.i686.rpm
openssl-libs-1.1.1k-12.el8_9.x86_64.rpm
openssl-perl-1.1.1k-12.el8_9.x86_64.rpm
aarch64:
openssl-1.1.1k-12.el8_9.aarch64.rpm
openssl-devel-1.1.1k-12.el8_9.aarch64.rpm
openssl-libs-1.1.1k-12.el8_9.aarch64.rpm
openssl-perl-1.1.1k-12.el8_9.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//openssl-1.1.1k-12.el8_9.src.rpm
Related CVEs:
CVE-2023-3446
CVE-2023-3817
CVE-2023-5678
Description of changes:
[1:1.1.1k-12]
- Backport implicit rejection mechanism for RSA PKCS#1 v1.5 to RHEL-8 series
(a proper fix for CVE-2020-25659)
Resolves: RHEL-17696
[1:1.1.1k-11]
- Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking
excessively long X9.42 DH keys or parameters may be very slow
Resolves: RHEL-16538
[1:1.1.1k-10]
- Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters
Resolves: RHEL-14245
- Fix CVE-2023-3817: Excessive time spent checking DH q parameter value
Resolves: RHEL-14239
More information about the El-errata
mailing list