OpenSSL and bind packages within CloudLinux OS 6 ELS have been rolled out to 100%

The OpenSSL package with the fix for the CVE-2021-23841 and the bind package with the fix for the CVE-2020-8625 within CloudLinux OS 6 extended lifecycle support have been rolled out to 100% and are now available for download from our production repository.

Changelog

openssl-1.0.1e-60.el6.cloudlinux.els6

• Fix Null pointer deref in X509_issuer_and_serial_hash() (CVE-2021-23841)

bind-9.8.2-0.68.rc1.9.cloudlinux.els

• Fix buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation (CVE-2020-8625)

Update command

yum update openssl*

Update command

yum update bind*