ALSA-2022:5326

Source
https://errata.almalinux.org/8/ALSA-2022-5326.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:5326.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2022:5326
Related
Published
2022-06-30T00:00:00Z
Modified
2022-07-21T17:49:13Z
Summary
Low: compat-openssl10 security update
Details

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. compat-openssl10 provides the legacy 1.0 version of OpenSSL for use with older binaries. Security Fix(es): * compat-openssl10: Infinite loop in BNmodsqrt() reachable when parsing certificates (CVE-2022-0778) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:8 / compat-openssl10

Package

Name
compat-openssl10

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:1.0.2o-4.el8_6