Lucene search

DebianDEBIAN:DSA-5532-1:5CBFE

HistoryOct 24, 2023 - 7:19 p.m.

[SECURITY] [DSA 5532-1] openssl security update

2023-10-2419:19:01

lists.debian.org

cipher key

confidentiality

openssl

debian

upgrade

iv length

security update

0.001 Low

EPSS

Percentile

44.8%

JSON

Debian Security Advisory DSA-5532-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
October 24, 2023 https://www.debian.org/security/faq

Package : openssl
CVE ID : CVE-2023-5363

Tony Battersby reported that incorrect cipher key and IV length
processing in OpenSSL, a Secure Sockets Layer toolkit, may result in
loss of confidentiality for some symmetric cipher modes.

Additional details can be found in the upstream advisory:
https://www.openssl.org/news/secadv/20231024.txt

For the stable distribution (bookworm), this problem has been fixed in
version 3.0.11-1~deb12u2.

We recommend that you upgrade your openssl packages.

For the detailed security status of openssl please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/openssl

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian12armhfopenssl< 3.0.11-1~deb12u2openssl_3.0.11-1~deb12u2_armhf.deb
Debian12amd64libssl-dev< 3.0.11-1~deb12u2libssl-dev_3.0.11-1~deb12u2_amd64.deb
Debian12ppc64elopenssl< 3.0.11-1~deb12u2openssl_3.0.11-1~deb12u2_ppc64el.deb
Debian12armelopenssl-dbgsym< 3.0.11-1~deb12u2openssl-dbgsym_3.0.11-1~deb12u2_armel.deb
Debian12arm64libcrypto3-udeb< 3.0.11-1~deb12u2libcrypto3-udeb_3.0.11-1~deb12u2_arm64.deb
Debian12mips64ellibssl3-udeb< 3.0.11-1~deb12u2libssl3-udeb_3.0.11-1~deb12u2_mips64el.deb
Debian12mipselopenssl< 3.0.11-1~deb12u2openssl_3.0.11-1~deb12u2_mipsel.deb
Debian12mipsellibssl-dev< 3.0.11-1~deb12u2libssl-dev_3.0.11-1~deb12u2_mipsel.deb
Debian12s390xlibssl3-udeb< 3.0.11-1~deb12u2libssl3-udeb_3.0.11-1~deb12u2_s390x.deb
Debian12amd64libssl3-dbgsym< 3.0.11-1~deb12u2libssl3-dbgsym_3.0.11-1~deb12u2_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	armhf	openssl	< 3.0.11-1~deb12u2	openssl_3.0.11-1~deb12u2_armhf.deb
Debian	12	amd64	libssl-dev	< 3.0.11-1~deb12u2	libssl-dev_3.0.11-1~deb12u2_amd64.deb
Debian	12	ppc64el	openssl	< 3.0.11-1~deb12u2	openssl_3.0.11-1~deb12u2_ppc64el.deb
Debian	12	armel	openssl-dbgsym	< 3.0.11-1~deb12u2	openssl-dbgsym_3.0.11-1~deb12u2_armel.deb
Debian	12	arm64	libcrypto3-udeb	< 3.0.11-1~deb12u2	libcrypto3-udeb_3.0.11-1~deb12u2_arm64.deb
Debian	12	mips64el	libssl3-udeb	< 3.0.11-1~deb12u2	libssl3-udeb_3.0.11-1~deb12u2_mips64el.deb
Debian	12	mipsel	openssl	< 3.0.11-1~deb12u2	openssl_3.0.11-1~deb12u2_mipsel.deb
Debian	12	mipsel	libssl-dev	< 3.0.11-1~deb12u2	libssl-dev_3.0.11-1~deb12u2_mipsel.deb
Debian	12	s390x	libssl3-udeb	< 3.0.11-1~deb12u2	libssl3-udeb_3.0.11-1~deb12u2_s390x.deb
Debian	12	amd64	libssl3-dbgsym	< 3.0.11-1~deb12u2	libssl3-dbgsym_3.0.11-1~deb12u2_amd64.deb

Rows per page:

1-10 of 651

0.001 Low

EPSS

Percentile

44.8%

JSON

Related for DEBIAN:DSA-5532-1:5CBFE