Lucene search
CentOS ProjectCESA-2022:1066HistoryMar 29, 2022 - 1:36 p.m.
openssl security update
2022-03-2913:36:31
CentOS Project
lists.centos.org
260
0.013 Low
EPSS
Percentile
86.1%
CentOS Errata and Security Advisory CESA-2022:1066
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
- openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (CVE-2022-0778)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2022-March/086264.html
Affected packages:
openssl
openssl-devel
openssl-libs
openssl-perl
openssl-static
Upstream details at:
https://access.redhat.com/errata/RHSA-2022:1066
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| CentOS | 7 | x86_64 | openssl | <Â 1.0.2k-25.el7_9 | openssl-1.0.2k-25.el7_9.x86_64.rpm |
| CentOS | 7 | i686 | openssl-devel | <Â 1.0.2k-25.el7_9 | openssl-devel-1.0.2k-25.el7_9.i686.rpm |
| CentOS | 7 | x86_64 | openssl-devel | <Â 1.0.2k-25.el7_9 | openssl-devel-1.0.2k-25.el7_9.x86_64.rpm |
| CentOS | 7 | i686 | openssl-libs | <Â 1.0.2k-25.el7_9 | openssl-libs-1.0.2k-25.el7_9.i686.rpm |
| CentOS | 7 | x86_64 | openssl-libs | <Â 1.0.2k-25.el7_9 | openssl-libs-1.0.2k-25.el7_9.x86_64.rpm |
| CentOS | 7 | x86_64 | openssl-perl | <Â 1.0.2k-25.el7_9 | openssl-perl-1.0.2k-25.el7_9.x86_64.rpm |
| CentOS | 7 | i686 | openssl-static | <Â 1.0.2k-25.el7_9 | openssl-static-1.0.2k-25.el7_9.i686.rpm |
| CentOS | 7 | x86_64 | openssl-static | <Â 1.0.2k-25.el7_9 | openssl-static-1.0.2k-25.el7_9.x86_64.rpm |
Related
oraclelinux
oraclelinux
openssl security update
2022-03-23 00:00:00
openssl security update
2022-03-28 00:00:00
openssl security update
2022-03-31 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package node version 14.19.1-alt1
2022-04-29 00:00:00
Security fix for the ALT Linux 9 package openssl10 version 1.0.2u-alt1.p9.2
2022-03-24 00:00:00
Security fix for the ALT Linux 10 package node version 16.14.2-alt1
2022-04-23 00:00:00
nessus
nessus
OpenSSL 3.0.0 < 3.0.2 Vulnerability
2022-03-16 00:00:00
EulerOS 2.0 SP3 : openssl098e (EulerOS-SA-2022-1754)
2022-05-26 00:00:00
Oracle Linux 7 : openssl (ELSA-2022-1066)
2022-03-29 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0162
2022-03-16 00:00:00
osv
osv
openssl-src's infinite loop in `BN_mod_sqrt()` reachable when parsing certificates
2022-03-16 00:00:45
openssl vulnerability
2022-03-15 18:12:12
Low: compat-openssl10 security update
2022-06-28 10:53:54
checkpoint_security
checkpoint_security
Check Point response to CVE-2022-0778
2022-07-03 22:15:24
cvelist
cvelist
ubuntu
ubuntu
OpenSSL vulnerability
2022-03-15 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:0856-1)
2022-03-16 00:00:00
Debian: Security Advisory (DLA-2953-1)
2022-03-18 00:00:00
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2022-1849)
2022-06-16 00:00:00
rocky
rocky
openssl security update
2022-03-28 07:46:07
compat-openssl10 security update
2022-06-28 10:53:54
compat-openssl11 security and bug fix update
2022-06-02 21:13:31
paloalto
paloalto
Impact of the OpenSSL Infinite Loop Vulnerability CVE-2022-0778
2022-03-31 02:30:00
almalinux
almalinux
Low: compat-openssl10 security update
2022-06-30 00:00:00
Important: openssl security update
2022-03-28 07:46:07
githubexploit
githubexploit
Exploit for Infinite Loop in Openssl
2022-04-18 07:51:18
Exploit for Infinite Loop in Openssl
2023-09-12 05:16:27
Exploit for Infinite Loop in Openssl
2022-04-04 18:09:06
ibm
ibm
cloudfoundry
cloudfoundry
USN-5328-2: OpenSSL vulnerabilityUSN-5328-2: OpenSSL vulnerability | Cloud Foundry
2022-04-21 00:00:00
USN-5328-1: OpenSSL vulnerability | Cloud Foundry
2022-05-23 00:00:00
hp
hp
openssl
openssl
Vulnerability in OpenSSL CVE-2022-0778
2022-03-15 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2022-0778
2022-03-17 20:51:13
redhat
redhat
(RHSA-2022:1520) Important: Red Hat JBoss Web Server 5.6.2 Security Update
2022-05-02 11:02:38
(RHSA-2022:1066) Important: openssl security update
2022-03-28 08:37:05
(RHSA-2022:1065) Important: openssl security update
2022-03-28 07:46:07
thn
thn
QNAP Warns of OpenSSL Infinite Loop Vulnerability Affecting NAS Devices
2022-03-31 03:23:00
mageia
mageia
Updated openssl packages fix security vulnerability
2022-03-23 11:36:28
veracode
veracode
Denial Of Service (DoS)
2022-03-16 09:55:55
checkpoint_advisories
checkpoint_advisories
OpenSSL Denial of Service (CVE-2022-0778)
2022-03-27 00:00:00
hivepro
hivepro
OpenSSL exposed to Denial-of-service vulnerability causing Infinite Loop
2022-03-17 14:17:00
fortinet
fortinet
Protect
2022-04-01 00:00:00
slackware
slackware
[slackware-security] openssl
2022-03-17 19:59:07
debiancve
debiancve
CVE-2022-0778
2022-03-15 17:15:00
alpinelinux
alpinelinux
CVE-2022-0778
2022-03-15 17:15:00
fedora
fedora
[SECURITY] Fedora 35 Update: openssl-1.1.1n-1.fc35
2022-03-22 03:44:53
cbl_mariner
cbl_mariner
CVE-2022-0778 affecting package openssl for versions less than 1.1.1k-12
2022-04-09 06:51:56
amazon
amazon
Important: openssl, openssl11
2022-03-15 18:49:00
Important: openssl
2022-03-15 18:54:00
cve
cve
CVE-2022-0778
2022-03-15 17:15:00
ubuntucve
ubuntucve
CVE-2022-0778
2022-03-15 00:00:00
ics
ics
Siemens OpenSSL Affected Industrial Products (Update E)
2023-01-13 12:00:00
prion
prion
Code injection
2022-03-15 17:15:00
redos
redos
ROS-20220318-02
2022-03-18 00:00:00
aix
aix
AIX is vulnerable to a denial of service due to OpenSSL
2022-05-13 09:32:08
github
github