drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in openssl
Name: |
Denial of Service in openssl |
|
ID: |
SSA:2022-076-02 |
|
Distribution: |
Slackware |
|
Plattformen: |
Slackware -current, Slackware x86_64 -current, Slackware 14.2, Slackware x86_64 14.2, Slackware 15.0, Slackware x86_64 15.0 |
|
Datum: |
Do, 17. März 2022, 23:41 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778 |
|
Applikationen: |
OpenSSL |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
[slackware-security] openssl (SSA:2022-076-02)
New openssl packages are available for Slackware 14.2, 15.0, and -current to fix a security issue.
Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/openssl-1.1.1n-i586-1_slack15.0.txz: Upgraded. This update fixes a high severity security issue: The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. For more information, see: https://www.openssl.org/news/secadv/20220315.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778 (* Security fix *) patches/packages/openssl-solibs-1.1.1n-i586-1_slack15.0.txz: Upgraded. +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated packages for Slackware 14.2: openssl-1.0.2u-i586-2_slack14.2.txz openssl-solibs-1.0.2u-i586-2_slack14.2.txz
Updated packages for Slackware x86_64 14.2: openssl-1.0.2u-x86_64-2_slack14.2.txz openssl-solibs-1.0.2u-x86_64-2_slack14.2.txz
Updated packages for Slackware 15.0: openssl-1.1.1n-i586-1_slack15.0.txz openssl-solibs-1.1.1n-i586-1_slack15.0.txz
Updated packages for Slackware x86_64 15.0: openssl-1.1.1n-x86_64-1_slack15.0.txz openssl-solibs-1.1.1n-x86_64-1_slack15.0.txz
Updated packages for Slackware -current: openssl-solibs-1.1.1n-i586-1.txz openssl-1.1.1n-i586-1.txz
Updated packages for Slackware x86_64 -current: openssl-solibs-1.1.1n-x86_64-1.txz openssl-1.1.1n-x86_64-1.txz
MD5 signatures: +-------------+
Slackware 15.0 packages: 081b29bfc577b0f4d3c15bc01e355c41 openssl-1.1.1n-i586-1_slack15.0.txz b380040566a7563ffee501c918ca58a7 openssl-solibs-1.1.1n-i586-1_slack15.0.txz
Slackware x86_64 15.0 packages: 1c7d523455958c10391cadaf5f44feda openssl-1.1.1n-x86_64-1_slack15.0.txz f868ef8099f24a5a0c9fd6db35a66aa7 openssl-solibs-1.1.1n-x86_64-1_slack15.0.txz
Slackware -current packages: d81d43ea76f048ed55010d20424c0fbb a/openssl-solibs-1.1.1n-i586-1.txz 145d92a9f13a07135f6a6c2cd502f40c n/openssl-1.1.1n-i586-1.txz
Slackware x86_64 -current packages: 725895720f07474a70b5ec48f6fe9351 a/openssl-solibs-1.1.1n-x86_64-1.txz ab4a31f56bfeeca2ebc3c9ceaf39e604 n/openssl-1.1.1n-x86_64-1.txz
Installation instructions: +------------------------+
Upgrade the packages as root: # upgradepkg openssl-1.1.1n-i586-1_slack15.0.txz openssl-solibs-1.1.1n-i586-1_slack15.0.txz
+-----+
Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com
+------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. | +------------------------------------------------------------------------+ -----BEGIN PGP SIGNATURE-----
iEYEARECAAYFAmIzkNwACgkQakRjwEAQIjOnJwCghqEJVlzJkyHlsnPRm+0aqpXP GroAmwZ/nDJWddjE8xwB0LHTsSel9RbG =wQet -----END PGP SIGNATURE-----
|
|
|
|