#5425 closed enhancement (fixed)

openssl-3.2.1

Reported by: Douglas R. Reno Owned by: lfs-book
Priority: high Milestone: 12.1
Component: Book Version: git
Severity: normal Keywords:
Cc:

Description

New point version

Change History (2)

comment:1 by Xi Ruoyao, 10 months ago

Priority: normalhigh

OpenSSL 3.2.1 is a security patch release. The most severe CVE fixed in this release is Low.

This release incorporates the following bug fixes and mitigations:

  • Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
  • Fixed excessive time spent checking invalid RSA public keys ([CVE-2023-6237])
  • Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129])
  • Fixed excessive time spent in DH check / generation with large Q parameter value [(CVE-2023-5678)]

comment:2 by Bruce Dubbs, 10 months ago

Resolution: fixed
Status: newclosed

Fixed at commit cdf280e3:

    Update to openssl-3.2.1.
    Update to zlib-1.3.1.
    Update to xz-5.4.6.
    Update to linux-6.7.2.
    Update to iana-etc-20240125.
    Update to binutils-2.42.
    Update to acl-2.3.2.
    Update upstream fixes for readline-8.2.
    Apply upstream fix for bash-5.2.21.
Note: See TracTickets for help on using tickets.