OracleLinux 6 ELS: openssl package with the fix for the CVE-2021-3712 and CVE-2021-23841 released
A new updated openssl package with the fix for the CVE-2021-3712 and CVE-2021-23841 within OracleLinux OS 6 ELS is now available for download from our production repository.
CHANGELOG
openssl-1.0.1e-62.el6.
- Fix handling ASN.1 string as NULL terminated leads to read buffer overrun (CVE-2021-3712)
- Fix NULL pointer deref in X509_issuer_and_serial_hash() (CVE-2021-23841)
UPDATE COMMAND
yum update openssl*
