A new updated OpenSSL package with the fix for the CVE-2021-23840 within CentOS 6 ELS has been scheduled for gradual rollout from our production repository.
Rollout slot: 2
Rolled out to: 1%
ETA for 100% rollout: June 29
- CVE-2021-23840: Fix integer overflow in CipherUpdate()
yum update openssl*
IMMEDIATE UPDATE (VIA BYPASS)
yum update openssl* --enablerepo=ELS6-rollout-2-