ALSA-2022:5326

Source

https://errata.almalinux.org/8/ALSA-2022-5326.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:5326.json

Related

• CVE-2022-0778

Published

2022-06-30T00:00:00Z

Modified

2022-07-21T17:49:13Z

Summary

Low: compat-openssl10 security update

Details

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. compat-openssl10 provides the legacy 1.0 version of OpenSSL for use with older binaries. Security Fix(es): * compat-openssl10: Infinite loop in BNmodsqrt() reachable when parsing certificates (CVE-2022-0778) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

• https://access.redhat.com/errata/RHSA-2022:5326
• https://access.redhat.com/security/cve/CVE-2022-0778
• https://bugzilla.redhat.com/2062202
• https://errata.almalinux.org/8/ALSA-2022-5326.html