CLSA-2023-1699439565

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1699439565.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2023-1699439565

Upstream

CVE-2021-3711

Published

2023-11-08T10:32:49Z

Modified

2026-06-01T00:33:22.002214645Z

Summary

openssl: Fix of CVE-2021-3711

Details

CVE-2021-3711: Fix an incorrect buffer size calculation leads to an overflow
Check the plaintext buffer is large enough when decrypting SM2
Add extended tests for SM2

References

https://errata.cloudlinux.com/centos8.5-els/CLSA-2023-1699439565.html

Affected packages

TuxCare:CentOS:8.5 / openssl

Package

Name: openssl
Purl: pkg:rpm/tuxcare/openssl?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1k-5.el8.5.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1699439565.json"

TuxCare:CentOS:8.5 / openssl-devel

Package

Name: openssl-devel
Purl: pkg:rpm/tuxcare/openssl-devel?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1k-5.el8.5.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1699439565.json"

TuxCare:CentOS:8.5 / openssl-libs

Package

Name: openssl-libs
Purl: pkg:rpm/tuxcare/openssl-libs?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1k-5.el8.5.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1699439565.json"

TuxCare:CentOS:8.5 / openssl-perl

Package

Name: openssl-perl
Purl: pkg:rpm/tuxcare/openssl-perl?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1k-5.el8.5.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1699439565.json"

TuxCare:CentOS:8.5 / openssl-static

Package

Name: openssl-static
Purl: pkg:rpm/tuxcare/openssl-static?distro=centos-8.5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1k-5.el8.5.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1699439565.json"