[CLSA-2025:1760029279] openssl: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2025-10-09 17:01:30 UTC
Description:
- CVE-2019-1547: fix side-channel vulnerability in ECDSA when using explicit EC parameters without cofactor - CVE-2025-9230: fix incorrect check of unwrapped key size
Updated packages:
  • openssl-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm
    sha:fd0711997729673cf4396286ee8e4a84a5851d459df91ec4099c547fd5d27328
  • openssl-devel-1.0.2k-26.el7_9.tuxcare.els6.i686.rpm
    sha:cc05a47bb9453078506e8cbe0b821c236385f4dda500ec625803f2f0661680a9
  • openssl-devel-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm
    sha:74b1082758a7bffc21ea7ec4e357943b991b0555476fbe49dc780b372344bbd9
  • openssl-libs-1.0.2k-26.el7_9.tuxcare.els6.i686.rpm
    sha:50a82871e006968fb4e11e78a43ef837d81d119bdead2c493cfab5351a650202
  • openssl-libs-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm
    sha:868c878d9074e1d308c0b019f5016c6612b3f94d09753606aa7bd18aab81c0a3
  • openssl-perl-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm
    sha:13cbd31d28f8f911ff13292ca32a2419ba42ad619d8002876d4f67f4ac5a4fab
  • openssl-static-1.0.2k-26.el7_9.tuxcare.els6.i686.rpm
    sha:c4ff6cdde65b127d911ea2aab511971a1e3d4091e224cf0d3e3e88479df9d6b8
  • openssl-static-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm
    sha:42607587c5488f318b496b8ef88f0d1ecb4ae2c845749bfe9effeac0950368de
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.