Lucene search
RedHatRHSA-2022:5818HistoryAug 02, 2022 - 7:00 a.m.
(RHSA-2022:5818) Moderate: openssl security update
2022-08-0207:00:02
access.redhat.com
299
0.106 Low
EPSS
Percentile
95.1%
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
-
openssl: c_rehash script allows command injection (CVE-2022-1292)
-
openssl: the c_rehash script allows command injection (CVE-2022-2068)
-
openssl: AES OCB fails to encrypt some bytes (CVE-2022-2097)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | i686 | openssl-debugsource | < 1.1.1k-7.el8_6 | openssl-debugsource-1.1.1k-7.el8_6.i686.rpm |
| RedHat | 8 | aarch64 | openssl-debuginfo | < 1.1.1k-7.el8_6 | openssl-debuginfo-1.1.1k-7.el8_6.aarch64.rpm |
| RedHat | 8 | aarch64 | openssl-devel | < 1.1.1k-7.el8_6 | openssl-devel-1.1.1k-7.el8_6.aarch64.rpm |
| RedHat | 8 | ppc64le | openssl-libs-debuginfo | < 1.1.1k-7.el8_6 | openssl-libs-debuginfo-1.1.1k-7.el8_6.ppc64le.rpm |
| RedHat | 8 | s390x | openssl-libs-debuginfo | < 1.1.1k-7.el8_6 | openssl-libs-debuginfo-1.1.1k-7.el8_6.s390x.rpm |
| RedHat | 8 | i686 | openssl-libs-debuginfo | < 1.1.1k-7.el8_6 | openssl-libs-debuginfo-1.1.1k-7.el8_6.i686.rpm |
| RedHat | 8 | x86_64 | openssl-libs | < 1.1.1k-7.el8_6 | openssl-libs-1.1.1k-7.el8_6.x86_64.rpm |
| RedHat | 8 | i686 | openssl-debuginfo | < 1.1.1k-7.el8_6 | openssl-debuginfo-1.1.1k-7.el8_6.i686.rpm |
| RedHat | 8 | s390x | openssl-debuginfo | < 1.1.1k-7.el8_6 | openssl-debuginfo-1.1.1k-7.el8_6.s390x.rpm |
| RedHat | 8 | x86_64 | openssl-debugsource | < 1.1.1k-7.el8_6 | openssl-debugsource-1.1.1k-7.el8_6.x86_64.rpm |
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : openssl-1_1 (SUSE-SU-2022:2308-1)
2022-07-08 00:00:00
EulerOS Virtualization 2.10.1 : openssl (EulerOS-SA-2022-2895)
2022-12-27 00:00:00
Rocky Linux 8 : openssl (RLSA-2022:5818)
2023-11-06 00:00:00
oraclelinux
oraclelinux
openssl security update
2022-08-05 00:00:00
openssl security update
2022-08-02 00:00:00
openssl security and bug fix update
2022-08-30 00:00:00
ibm
ibm
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:2308-1)
2022-07-07 00:00:00
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2022-2396)
2022-09-26 00:00:00
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2022-2419)
2022-10-10 00:00:00
aix
aix
AIX is vulnerable to arbitrary command execution due to OpenSSL
2022-08-17 16:39:03
osv
osv
Moderate: openssl security update
2022-08-03 00:00:00
Moderate: openssl security update
2022-08-02 07:00:02
nodejs vulnerabilities
2023-10-30 10:06:58
suse
suse
Security update for openssl-1_1 (important)
2022-07-06 00:00:00
Security update for openssl-1_0_0 (moderate)
2022-07-07 00:00:00
Security update for openssl-1_1 (moderate)
2022-07-04 00:00:00
rocky
rocky
openssl security update
2022-08-02 07:00:02
openssl security and bug fix update
2023-01-26 21:50:01
almalinux
almalinux
Moderate: openssl security update
2022-08-03 00:00:00
Moderate: openssl security and bug fix update
2022-08-30 00:00:00
ubuntu
ubuntu
Node.js vulnerabilities
2023-10-30 00:00:00
OpenSSL vulnerability
2022-07-06 00:00:00
OpenSSL vulnerability
2022-07-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.1.1p-alt1
2022-06-22 00:00:00
Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1p-alt1
2022-06-24 00:00:00
Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1q-alt1
2022-07-08 00:00:00
broadcom
broadcom
openssl file names of certificates being hashed were possibly passed to a command executed through the shell
2023-08-01 00:00:00
AES OCB fails to encrypt some bytes
2023-08-01 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2022-2068
2022-06-21 00:00:00
amazon
amazon
Medium: openssl
2022-07-28 21:55:00
Medium: openssl11
2022-07-28 21:55:00
Medium: openssl
2022-07-28 20:38:00
redhat
redhat
cvelist
cvelist
CVE-2022-2068 The c_rehash script allows command injection
2022-06-21 00:00:00
prion
prion
Command injection
2022-06-21 15:15:00
Design/Logic Flaw
2022-07-05 11:15:00
redhatcve
redhatcve
CVE-2022-2068
2022-06-22 06:36:12
CVE-2022-2097
2022-07-07 18:14:40
debiancve
debiancve
CVE-2022-2068
2022-06-21 15:15:00
CVE-2022-2097
2022-07-05 11:15:00
fedora
fedora
[SECURITY] Fedora 35 Update: openssl-1.1.1q-1.fc35
2022-07-23 02:27:30
[SECURITY] Fedora 36 Update: openssl-3.0.5-1.fc36
2022-07-09 01:24:48
cloudlinux
cloudlinux
Fixed CVEs in openssl: CVE-2022-1292, CVE-2022-2068
2022-07-14 16:53:26
ubuntucve
ubuntucve
CVE-2022-2068
2022-06-21 00:00:00
CVE-2022-2097
2022-07-05 00:00:00
alpinelinux
alpinelinux
CVE-2022-2068
2022-06-21 15:15:00
CVE-2022-2097
2022-07-05 11:15:00
slackware
slackware
[slackware-security] Slackware 14.2 openssl
2022-06-28 19:28:45
[slackware-security] openssl
2022-06-23 05:32:23
f5
f5
K21600298 : OpenSSL vulnerabilities CVE-2022-1292 and CVE-2022-2068
2022-08-05 00:00:00
cve
cve
CVE-2022-2068
2022-06-21 15:15:00
CVE-2022-2097
2022-07-05 11:15:00
veracode
veracode
Command Injection
2022-06-22 12:42:34
Information Disclosure
2022-07-06 11:25:33
nodejsblog
nodejsblog
OpenSSL update assessment, and Node.js project plans
2022-06-21 00:00:00
OpenSSL update assessment, and Node.js project plans
2022-06-21 00:00:00
rustsec
rustsec
AES OCB fails to encrypt some bytes
2022-07-05 12:00:00
ics
ics
Mitsubishi Electric GT SoftGOT2000
2022-11-15 12:00:00
debian
debian
[SECURITY] [DSA 5169-1] openssl security update
2022-06-26 18:26:57
freebsd
freebsd
OpenSSL -- AES OCB fails to encrypt some bytes
2022-07-05 00:00:00