Lucene search
OracleLinuxELSA-2023-3722HistoryJun 22, 2023 - 12:00 a.m.
openssl security and bug fix update
2023-06-2200:00:00
linux.oracle.com
12
openssl update
bug fix
dos vulnerability
security patch
fips compliance
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
59.9%
[3.0.7-16.0.1]
- Replace upstream references [Orabug: 34340177]
[1:3.0.7-16] - Fix possible DoS translating ASN.1 object identifiers
Resolves: CVE-2023-2650 - Release the DRBG in global default libctx early
Resolves: rhbz#2211396
[1:3.0.7-15.1] - Re-enable DHX keys in FIPS mode, disable FIPS 186-4 parameter validation and generation in FIPS mode
Resolves: rhbz#2178030
[1:3.0.7-15] - Enforce using EMS in FIPS mode - alerts tuning
Related: rhbz#2157951
[1:3.0.7-14] - Input buffer over-read in AES-XTS implementation on 64 bit ARM
Resolves: rhbz#2188554
[1:3.0.7-13] - Enforce using EMS in FIPS mode
Resolves: rhbz#2157951 - Fix excessive resource usage in verifying X509 policy constraints
Resolves: rhbz#2186661 - Fix invalid certificate policies in leaf certificates check
Resolves: rhbz#2187429 - Certificate policy check not enabled
Resolves: rhbz#2187431 - OpenSSL rsa_verify_recover key length checks in FIPS mode
Resolves: rhbz#2186819
[1:3.0.7-12] - Change explicit FIPS indicator for RSA decryption to unapproved
Resolves: rhbz#2179379
[1:3.0.7-11] - Add missing reference to patchfile to add explicit FIPS indicator to RSA
encryption and RSASVE and fix the gettable parameter list for the RSA
asymmetric cipher implementation.
Resolves: rhbz#2179379
[1:3.0.7-10] - Add explicit FIPS indicator to RSA encryption and RSASVE
Resolves: rhbz#2179379
[1:3.0.7-9] - Fix explicit FIPS indicator for X9.42 KDF when used with output lengths < 14 bytes
Resolves: rhbz#2175864
[1:3.0.7-8] - Fix Wpointer-sign compiler warning
Resolves: rhbz#2178034
[1:3.0.7-7] - Add explicit FIPS indicators to key derivation functions
Resolves: rhbz#2175860 rhbz#2175864 - Zeroize FIPS module integrity check MAC after check
Resolves: rhbz#2175873 - Add explicit FIPS indicator for IV generation in AES-GCM
Resolves: rhbz#2175868 - Add explicit FIPS indicator for PBKDF2, use test vector with FIPS-compliant
salt in PBKDF2 FIPS self-test
Resolves: rhbz#2178137 - Limit RSA_NO_PADDING for encryption and signature in FIPS mode
Resolves: rhbz#2178029 - Pairwise consistency tests should use Digest+Sign/Verify
Resolves: rhbz#2178034 - Forbid DHX keys import in FIPS mode
Resolves: rhbz#2178030 - DH PCT should abort on failure
Resolves: rhbz#2178039 - Increase RNG seeding buffer size to 32
Related: rhbz#2168224
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.src.rpm |
| oracle linux | 9 | aarch64 | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | aarch64 | openssl-devel | < 3.0.7-16.0.1.el9_2 | openssl-devel-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | aarch64 | openssl-libs | < 3.0.7-16.0.1.el9_2 | openssl-libs-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | aarch64 | openssl-perl | < 3.0.7-16.0.1.el9_2 | openssl-perl-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | src | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.src.rpm |
| oracle linux | 9 | x86_64 | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.x86_64.rpm |
| oracle linux | 9 | i686 | openssl-devel | < 3.0.7-16.0.1.el9_2 | openssl-devel-3.0.7-16.0.1.el9_2.i686.rpm |
| oracle linux | 9 | x86_64 | openssl-devel | < 3.0.7-16.0.1.el9_2 | openssl-devel-3.0.7-16.0.1.el9_2.x86_64.rpm |
| oracle linux | 9 | i686 | openssl-libs | < 3.0.7-16.0.1.el9_2 | openssl-libs-3.0.7-16.0.1.el9_2.i686.rpm |
Related
nessus
nessus
Oracle Linux 9 : openssl (ELSA-2023-3722)
2023-06-22 00:00:00
RHEL 9 : openssl (RHSA-2023:3722)
2023-06-22 00:00:00
AlmaLinux 9 : openssl (ALSA-2023:3722)
2023-06-26 00:00:00
openvas
openvas
Fedora: Security Advisory for openssl (FEDORA-2023-026c8ba371)
2023-06-04 00:00:00
Oracle MySQL Server <= 5.7.42, 8.x <= 8.0.33 Security Update (cpuoct2023) - Linux
2023-10-18 00:00:00
Fedora: Security Advisory for openssl (FEDORA-2023-964eb00fc6)
2023-06-05 00:00:00
almalinux
almalinux
Moderate: openssl security and bug fix update
2023-06-21 00:00:00
oraclelinux
oraclelinux
openssl security update
2023-08-31 00:00:00
redhat
redhat
fedora
fedora
[SECURITY] Fedora 38 Update: openssl-3.0.9-1.fc38
2023-06-03 02:46:16
[SECURITY] Fedora 37 Update: openssl-3.0.9-1.fc37
2023-06-04 01:24:09
osv
osv
Moderate: openssl security and bug fix update
2023-06-21 00:00:00
CVE-2023-1255
2023-04-20 17:15:06
ibm
ibm
amazon
amazon
Medium: openssl
2023-06-05 16:39:00
Medium: openssl
2023-06-05 16:39:00
Medium: openssl11
2023-05-11 17:49:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2366
2024-03-05 08:46:27
cloudfoundry
cloudfoundry
USN-6039-1: OpenSSL vulnerabilities | Cloud Foundry
2023-06-30 00:00:00
USN-6119-1: OpenSSL vulnerabilities | Cloud Foundry
2023-06-30 00:00:00
freebsd
freebsd
Python -- multiple vulnerabilities
2022-06-08 00:00:00
OpenSSL -- Multiple vulnerabilities
2023-03-28 00:00:00
OpenSSL -- Possible DoS translating ASN.1 identifiers
2023-05-30 00:00:00
aix
aix
Multiple vulnerabilities in OpenSSL affect AIX
2023-09-11 10:43:54
f5
f5
K000134574 : OpenSSL vulnerabilities CVE-2023-0465 and CVE-2023-0466
2023-05-11 00:00:00
K000133752 : OpenSSL vulnerability CVE-2023-1255
2023-05-01 00:00:00
K000135178 : OpenSSL vulnerability CVE-2023-2650
2023-06-22 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0034
2023-06-21 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0594
2023-06-08 00:00:00
cloudlinux
cloudlinux
openssl: Fix of 3 CVEs
2023-05-04 21:42:17
openssl: Fix of CVE-2023-2650
2023-06-20 13:49:26
cgr
cgr
CVE-2023-1255 vulnerabilities
2024-05-19 03:07:16
CVE-2023-2650 vulnerabilities
2024-05-19 03:07:16
openssl
openssl
Vulnerability in OpenSSL CVE-2023-1255
2023-03-21 00:00:00
Vulnerability in OpenSSL CVE-2023-2650
2023-05-30 00:00:00
broadcom
broadcom
alpinelinux
alpinelinux
CVE-2023-1255
2023-04-20 17:15:06
cvelist
cvelist
CVE-2023-2650 Possible DoS translating ASN.1 object identifiers
2023-05-30 13:40:11
CVE-2023-1255 Input buffer over-read in AES-XTS implementation on 64 bit ARM
2023-04-20 16:14:54
veracode
veracode
Denial Of Services (DoS)
2023-05-15 06:35:51
Denial Of Service (DoS)
2023-06-05 02:04:40
redhatcve
redhatcve
CVE-2023-1255
2023-04-20 20:59:39
ubuntucve
ubuntucve
CVE-2023-1255
2023-04-20 00:00:00
redos
redos
ROS-20230621-05
2023-06-21 00:00:00
slackware
slackware
[slackware-security] openssl
2023-05-31 01:33:48
cbl_mariner
cbl_mariner
CVE-2023-2650 affecting package edk2 for versions less than 20230301gitf80f052277c8-37
2024-04-17 22:02:46
CVE-2023-2650 affecting package openssl for versions less than 1.1.1k-25
2023-08-23 05:56:13
CVE-2023-2650 affecting package openssl 1.1.1k-15
2023-06-27 21:25:25
mageia
mageia
Updated openssl packages fix security vulnerability
2023-06-08 22:34:59
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
59.9%
Related for ELSA-2023-3722