Oracle Linux 6266 Published by

An openssl security update has been released for Oracle Linux 7.



El-errata: ELSA-2020-5566-1 Important: Oracle Linux 7 openssl security update


Oracle Linux Security Advisory ELSA-2020-5566-1

  http://linux.oracle.com/errata/ELSA-2020-5566-1.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
openssl-1.0.2k-21.el7_9.x86_64.rpm
openssl-devel-1.0.2k-21.el7_9.i686.rpm
openssl-devel-1.0.2k-21.el7_9.x86_64.rpm
openssl-libs-1.0.2k-21.el7_9.i686.rpm
openssl-libs-1.0.2k-21.el7_9.x86_64.rpm
openssl-perl-1.0.2k-21.el7_9.x86_64.rpm
openssl-static-1.0.2k-21.el7_9.i686.rpm
openssl-static-1.0.2k-21.el7_9.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/openssl-1.0.2k-21.el7_9.src.rpm


Description of changes:

[1.0.2k-21]
- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch

[1.0.2k-20]
- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference