[ol9_baseos_latest] openssl-1:3.0.7-16.0.1.el9_2.x86_64

Name:	openssl
Epoch:	1
Version:	3.0.7
Release:	16.0.1.el9_2
Architecture:	x86_64
Group:	Unspecified
Size:	1894213
License:	ASL 2.0
RPM:	openssl-3.0.7-16.0.1.el9_2.x86_64.rpm
Source RPM:	openssl-3.0.7-16.0.1.el9_2.src.rpm
Build Date:	Wed Jun 21 2023
Build Host:	build-ol9-x86_64.oracle.com
Vendor:	Oracle America
URL:	http://www.openssl.org/
Summary:	Utilities from the general purpose cryptography library with TLS implementation
Description:	The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols.

Changelog (Show File list) (Show related packages)

Wed Jun 21 2023 EL Errata <el-errata_ww@oracle.com> - 3.0.7-16.0.1
```
- Replace upstream references [Orabug: 34340177]
```

Wed May 31 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-16

- Fix possible DoS translating ASN.1 object identifiers
  Resolves: CVE-2023-2650
- Release the DRBG in global default libctx early
  Resolves: rhbz#2211396

Tue May 23 2023 Clemens Lang <cllang@redhat.com> - 1:3.0.7-15.1

- Re-enable DHX keys in FIPS mode, disable FIPS 186-4 parameter validation and generation in FIPS mode
  Resolves: rhbz#2178030

Fri May 05 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-15

- Enforce using EMS in FIPS mode - alerts tuning
  Related: rhbz#2157951

Fri Apr 21 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-14

- Input buffer over-read in AES-XTS implementation on 64 bit ARM
  Resolves: rhbz#2188554

Tue Apr 18 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-13

- Enforce using EMS in FIPS mode
  Resolves: rhbz#2157951
- Fix excessive resource usage in verifying X509 policy constraints
  Resolves: rhbz#2186661
- Fix invalid certificate policies in leaf certificates check
  Resolves: rhbz#2187429
- Certificate policy check not enabled
  Resolves: rhbz#2187431
- OpenSSL rsa_verify_recover key length checks in FIPS mode
  Resolves: rhbz#2186819

Fri Mar 24 2023 Clemens Lang <cllang@redhat.com> - 1:3.0.7-12

- Change explicit FIPS indicator for RSA decryption to unapproved
  Resolves: rhbz#2179379

Mon Mar 20 2023 Clemens Lang <cllang@redhat.com> - 1:3.0.7-11

- Add missing reference to patchfile to add explicit FIPS indicator to RSA
  encryption and RSASVE and fix the gettable parameter list for the RSA
  asymmetric cipher implementation.
  Resolves: rhbz#2179379

Fri Mar 17 2023 Clemens Lang <cllang@redhat.com> - 1:3.0.7-10

- Add explicit FIPS indicator to RSA encryption and RSASVE
  Resolves: rhbz#2179379

Thu Mar 16 2023 Clemens Lang <cllang@redhat.com> - 1:3.0.7-9

- Fix explicit FIPS indicator for X9.42 KDF when used with output lengths < 14 bytes
  Resolves: rhbz#2175864