Fedora Linux 8773 Published by

An openssl security update has been released for Fedora 35.



SECURITY: Fedora 35 Update: openssl-1.1.1q-1.fc35


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-41890e9e44
2022-07-23 02:26:57.539923
--------------------------------------------------------------------------------

Name : openssl
Product : Fedora 35
Version : 1.1.1q
Release : 1.fc35
URL :   http://www.openssl.org/
Summary : Utilities from the general purpose cryptography library with TLS implementation
Description :
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
protocols.

--------------------------------------------------------------------------------
Update Information:

**Changelog** ``` * Thu Jul 07 2022 Clemens Lang -
1:1.1.1q-1 - Upgrade to 1.1.1q Resolves: CVE-2022-2097 ``` ---- ``` * Thu
Jun 30 2022 Clemens Lang - 1:1.1.1p-1 - Upgrade to 1.1.1p
Resolves: CVE-2022-2068 Related: rhbz#2099975 ``` Security fix for
CVE-2022-2068
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 7 2022 Clemens Lang - 1:1.1.1q-1
- Upgrade to 1.1.1q
Resolves: CVE-2022-2097
* Thu Jun 30 2022 Clemens Lang - 1:1.1.1p-1
- Upgrade to 1.1.1p
Resolves: CVE-2022-2068
Related: rhbz#2099975
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2097310 - CVE-2022-2068 openssl: the c_rehash script allows command injection
  https://bugzilla.redhat.com/show_bug.cgi?id=2097310
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-41890e9e44' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________