Release date:
2026-04-02 16:21:05 UTC
Description:
- CVE-2023-5678: fix excessive time in DH check/generation with large Q
parameter by adding bounds checks in DH_check_pub_key and DH_generate_key
- CVE-2024-0727: fix PKCS12 decoding NULL pointer dereference by adding NULL
checks where ContentInfo data can be NULL
Updated packages:
-
alt-openssl11-1.1.1w-3.2.el9.x86_64.rpm
sha:29b158fc7e146debe00fe7786eb81c435044311d94e4f752a20f37d3c0bb47dc
-
alt-openssl11-devel-1.1.1w-3.2.el9.x86_64.rpm
sha:ad4d13beec752e7e6fe9f9c6e070cb97879b19c3a54621fcbd6e9039e0705efb
-
alt-openssl11-libs-1.1.1w-3.2.el9.x86_64.rpm
sha:978a411eda91220868e718a2e0c25f41b1f97665ebdc688ae3deac0c40482156
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
