Lucene search
OracleLinuxELSA-2023-3722HistoryJun 22, 2023 - 12:00 a.m.
openssl security and bug fix update
2023-06-2200:00:00
linux.oracle.com
12
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
59.9%
[3.0.7-16.0.1]
- Replace upstream references [Orabug: 34340177]
[1:3.0.7-16] - Fix possible DoS translating ASN.1 object identifiers
Resolves: CVE-2023-2650 - Release the DRBG in global default libctx early
Resolves: rhbz#2211396
[1:3.0.7-15.1] - Re-enable DHX keys in FIPS mode, disable FIPS 186-4 parameter validation and generation in FIPS mode
Resolves: rhbz#2178030
[1:3.0.7-15] - Enforce using EMS in FIPS mode - alerts tuning
Related: rhbz#2157951
[1:3.0.7-14] - Input buffer over-read in AES-XTS implementation on 64 bit ARM
Resolves: rhbz#2188554
[1:3.0.7-13] - Enforce using EMS in FIPS mode
Resolves: rhbz#2157951 - Fix excessive resource usage in verifying X509 policy constraints
Resolves: rhbz#2186661 - Fix invalid certificate policies in leaf certificates check
Resolves: rhbz#2187429 - Certificate policy check not enabled
Resolves: rhbz#2187431 - OpenSSL rsa_verify_recover key length checks in FIPS mode
Resolves: rhbz#2186819
[1:3.0.7-12] - Change explicit FIPS indicator for RSA decryption to unapproved
Resolves: rhbz#2179379
[1:3.0.7-11] - Add missing reference to patchfile to add explicit FIPS indicator to RSA
encryption and RSASVE and fix the gettable parameter list for the RSA
asymmetric cipher implementation.
Resolves: rhbz#2179379
[1:3.0.7-10] - Add explicit FIPS indicator to RSA encryption and RSASVE
Resolves: rhbz#2179379
[1:3.0.7-9] - Fix explicit FIPS indicator for X9.42 KDF when used with output lengths < 14 bytes
Resolves: rhbz#2175864
[1:3.0.7-8] - Fix Wpointer-sign compiler warning
Resolves: rhbz#2178034
[1:3.0.7-7] - Add explicit FIPS indicators to key derivation functions
Resolves: rhbz#2175860 rhbz#2175864 - Zeroize FIPS module integrity check MAC after check
Resolves: rhbz#2175873 - Add explicit FIPS indicator for IV generation in AES-GCM
Resolves: rhbz#2175868 - Add explicit FIPS indicator for PBKDF2, use test vector with FIPS-compliant
salt in PBKDF2 FIPS self-test
Resolves: rhbz#2178137 - Limit RSA_NO_PADDING for encryption and signature in FIPS mode
Resolves: rhbz#2178029 - Pairwise consistency tests should use Digest+Sign/Verify
Resolves: rhbz#2178034 - Forbid DHX keys import in FIPS mode
Resolves: rhbz#2178030 - DH PCT should abort on failure
Resolves: rhbz#2178039 - Increase RNG seeding buffer size to 32
Related: rhbz#2168224
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.src.rpm |
| oracle linux | 9 | aarch64 | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | aarch64 | openssl-devel | < 3.0.7-16.0.1.el9_2 | openssl-devel-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | aarch64 | openssl-libs | < 3.0.7-16.0.1.el9_2 | openssl-libs-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | aarch64 | openssl-perl | < 3.0.7-16.0.1.el9_2 | openssl-perl-3.0.7-16.0.1.el9_2.aarch64.rpm |
| oracle linux | 9 | src | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.src.rpm |
| oracle linux | 9 | x86_64 | openssl | < 3.0.7-16.0.1.el9_2 | openssl-3.0.7-16.0.1.el9_2.x86_64.rpm |
| oracle linux | 9 | i686 | openssl-devel | < 3.0.7-16.0.1.el9_2 | openssl-devel-3.0.7-16.0.1.el9_2.i686.rpm |
| oracle linux | 9 | x86_64 | openssl-devel | < 3.0.7-16.0.1.el9_2 | openssl-devel-3.0.7-16.0.1.el9_2.x86_64.rpm |
| oracle linux | 9 | i686 | openssl-libs | < 3.0.7-16.0.1.el9_2 | openssl-libs-3.0.7-16.0.1.el9_2.i686.rpm |
Related
nessus
nessus
Oracle Linux 9 : openssl (ELSA-2023-3722)
2023-06-22 00:00:00
RHEL 9 : openssl (RHSA-2023:3722)
2023-06-22 00:00:00
AlmaLinux 9 : openssl (ALSA-2023:3722)
2023-06-26 00:00:00
openvas
openvas
Fedora: Security Advisory for openssl (FEDORA-2023-026c8ba371)
2023-06-04 00:00:00
almalinux
almalinux
Moderate: openssl security and bug fix update
2023-06-21 00:00:00
oraclelinux
oraclelinux
openssl security update
2023-08-31 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: openssl-3.0.9-1.fc38
2023-06-03 02:46:16
[SECURITY] Fedora 37 Update: openssl-3.0.9-1.fc37
2023-06-04 01:24:09
redhat
redhat
osv
osv
Moderate: openssl security and bug fix update
2023-06-21 00:00:00
openssl - security update
2023-05-31 00:00:00
openssl - security update
2023-06-08 00:00:00
ibm
ibm
amazon
amazon
Medium: openssl
2023-06-05 16:39:00
Medium: openssl
2023-06-05 16:39:00
Medium: openssl11
2023-05-11 17:49:00
debian
debian
[SECURITY] [DLA 3449-1] openssl security update
2023-06-08 16:32:36
[SECURITY] [DSA 5417-1] openssl security update
2023-05-31 14:50:37
rosalinux
rosalinux
Advisory ROSA-SA-2024-2366
2024-03-05 08:46:27
ubuntu
ubuntu
OpenSSL vulnerabilities
2023-04-25 00:00:00
OpenSSL vulnerabilities
2023-05-30 00:00:00
cloudfoundry
cloudfoundry
USN-6039-1: OpenSSL vulnerabilities | Cloud Foundry
2023-06-30 00:00:00
USN-6119-1: OpenSSL vulnerabilities | Cloud Foundry
2023-06-30 00:00:00
freebsd
freebsd
Python -- multiple vulnerabilities
2022-06-08 00:00:00
OpenSSL -- Multiple vulnerabilities
2023-03-28 00:00:00
OpenSSL -- Possible DoS translating ASN.1 identifiers
2023-05-30 00:00:00
aix
aix
Multiple vulnerabilities in OpenSSL affect AIX
2023-09-11 10:43:54
f5
f5
K000134574 : OpenSSL vulnerabilities CVE-2023-0465 and CVE-2023-0466
2023-05-11 00:00:00
K000133752 : OpenSSL vulnerability CVE-2023-1255
2023-05-01 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0034
2023-06-21 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0594
2023-06-08 00:00:00
cloudlinux
cloudlinux
openssl: Fix of 3 CVEs
2023-05-04 21:42:17
openssl: Fix of CVE-2023-2650
2023-06-20 13:49:26
cgr
cgr
CVE-2023-1255 vulnerabilities
2024-05-04 21:06:41
mageia
mageia
Updated openssl packages fix security vulnerability
2023-06-08 22:34:59
cbl_mariner
cbl_mariner
CVE-2023-2650 affecting package openssl 1.1.1k-15
2023-06-27 21:25:25
veracode
veracode
Denial Of Services (DoS)
2023-05-15 06:35:51
redhatcve
redhatcve
CVE-2023-1255
2023-04-20 20:59:39
ubuntucve
ubuntucve
CVE-2023-1255
2023-04-20 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2023-1255
2023-03-21 00:00:00
alpinelinux
alpinelinux
CVE-2023-1255
2023-04-20 17:15:06
broadcom
broadcom
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
59.9%
Related for ELSA-2023-3722