openssl security update

2024-09-1900:00:00

linux.oracle.com

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.1

Confidence

Low

JSON

[3.0.7-28.0.1]

Drop OpenELA branding, apply Oracle branding patches
Enable openssl-fips-provider dependency [Orabug: 36504822]
Temporary disable openssl-fips-provider dependency [Orabug: 36504822]
Replace upstream references [Orabug: 34340177]
[1:3.0.7-28]
Patch for CVE-2024-6119
Resolves: RHEL-55340

OSVersionArchitecturePackageVersionFilename
oracle linux9srcopenssl< 3.0.7-28.0.1.el9_4openssl-3.0.7-28.0.1.el9_4.src.rpm
oracle linux9srcopenssl< 3.0.7-28.0.1.el9_4openssl-3.0.7-28.0.1.el9_4.src.rpm
oracle linux9srcopenssl< 3.0.7-28.0.1.el9_4openssl-3.0.7-28.0.1.el9_4.src.rpm
oracle linux9aarch64openssl< 3.0.7-28.0.1.el9_4openssl-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux9aarch64openssl< 3.0.7-28.0.1.el9_4openssl-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux9aarch64openssl-devel< 3.0.7-28.0.1.el9_4openssl-devel-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux9aarch64openssl-libs< 3.0.7-28.0.1.el9_4openssl-libs-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux9aarch64openssl-libs< 3.0.7-28.0.1.el9_4openssl-libs-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux9aarch64openssl-perl< 3.0.7-28.0.1.el9_4openssl-perl-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux9srcopenssl< 3.0.7-28.0.1.el9_4openssl-3.0.7-28.0.1.el9_4.src.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	9	src	openssl	< 3.0.7-28.0.1.el9_4	openssl-3.0.7-28.0.1.el9_4.src.rpm
oracle linux	9	src	openssl	< 3.0.7-28.0.1.el9_4	openssl-3.0.7-28.0.1.el9_4.src.rpm
oracle linux	9	src	openssl	< 3.0.7-28.0.1.el9_4	openssl-3.0.7-28.0.1.el9_4.src.rpm
oracle linux	9	aarch64	openssl	< 3.0.7-28.0.1.el9_4	openssl-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux	9	aarch64	openssl	< 3.0.7-28.0.1.el9_4	openssl-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux	9	aarch64	openssl-devel	< 3.0.7-28.0.1.el9_4	openssl-devel-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux	9	aarch64	openssl-libs	< 3.0.7-28.0.1.el9_4	openssl-libs-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux	9	aarch64	openssl-libs	< 3.0.7-28.0.1.el9_4	openssl-libs-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux	9	aarch64	openssl-perl	< 3.0.7-28.0.1.el9_4	openssl-perl-3.0.7-28.0.1.el9_4.aarch64.rpm
oracle linux	9	src	openssl	< 3.0.7-28.0.1.el9_4	openssl-3.0.7-28.0.1.el9_4.src.rpm