Oracle Linux 6278 Published by

A libgcrypt bug fix and enhancement update has been released for Oracle Linux 9.



El-errata: ELBA-2022-7324 Oracle Linux 9 libgcrypt bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2022-7324

  http://linux.oracle.com/errata/ELBA-2022-7324.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libgcrypt-1.10.0-8.el9_0.i686.rpm
libgcrypt-1.10.0-8.el9_0.x86_64.rpm
libgcrypt-devel-1.10.0-8.el9_0.i686.rpm
libgcrypt-devel-1.10.0-8.el9_0.x86_64.rpm

aarch64:
libgcrypt-1.10.0-8.el9_0.aarch64.rpm
libgcrypt-devel-1.10.0-8.el9_0.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol9/SRPMS-updates/libgcrypt-1.10.0-8.el9_0.src.rpm


Description of changes:

[1.10.0-8]
- Fix unneeded PBKDF2 passphrase length limitation in FIPS mode
- Enforce HMAC key lengths in MD API in FIPS mode

[1.10.0-7]
- Properly enforce KDF limits in FIPS mode (#2130275)
- Fix memory leak in large digest test (#2129150)
- Fix function name FIPS service indicator by disabling PK encryption and decryption (#2130275)
- Skip RSA encryption/decryption selftest in FIPS mode (#2130275)

[1.10.0-6]
- Fix SHA3 digests with large inputs (#2129150)
- Fix FIPS RSA PCT (#2128455)
- Fix RSA FIPS Keygen that non-deterministically fails (#2130275)
- Get max 32B from getrandom in FIPS mode (#2130275)

_______________________________________________