CloudLinux OS 6 ELS: openssl package has been rolled out to 100%

Extended-CL

A new updated openssl package with the fix for several CVEs within CloudLinux OS 6 ELS has been rolled out to 100% and is now available for download from our production repository.

Changelog

openssl-1.0.1e-62.el6.cloudlinux.els

Fix handling ASN.1 string as NULL terminated leads to read buffer overrun (CVE-2021-3712)
Fix excessively large primes in DH key generation (CVE-2018-0732)
Fix RSA key generation cache timing vulnerability (CVE-2018-0737)
Fix stack overflow parsing recursive ASN.1 structure (CVE-2018-0739)
Fix out-of-bounds read (CVE-2017-3735)

Update command

yum update openssl*

CloudLinux OS 6 ELS: openssl package has been rolled out to 100%

Sep 20, 2021 12:33:39 PM

Inessa Atmachian

Extended-CL

A new updated openssl package with the fix for several CVEs within CloudLinux OS 6 ELS has been rolled out to 100% and is now available for download from our production repository.

Changelog

openssl-1.0.1e-62.el6.cloudlinux.els

Fix handling ASN.1 string as NULL terminated leads to read buffer overrun (CVE-2021-3712)
Fix excessively large primes in DH key generation (CVE-2018-0732)
Fix RSA key generation cache timing vulnerability (CVE-2018-0737)
Fix stack overflow parsing recursive ASN.1 structure (CVE-2018-0739)
Fix out-of-bounds read (CVE-2017-3735)

Update command

yum update openssl*

Looking for “how to” content?

CloudLinux OS 6 ELS: openssl package has been rolled out to 100%

Changelog

Update command

CloudLinux OS 6 ELS: openssl package has been rolled out to 100%

Changelog

Update command

WEB SERVER SECURITY BLOG

Subscribe to CloudLinux Newsletter