RHSA-2021:3798MediumCVSS 7.5
Red Hat Security Advisory: openssl security update
🔗 CVE IDs covered (2)
📋 Description
CVE-2021-23840 — openssl: integer overflow in CipherUpdate CVE-2021-23841 — openssl: NULL pointer dereference in X509_issuer_and_serial_hash()
🔗 References (5)
- selfhttps://access.redhat.com/errata/RHSA-2021:3798
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1930310
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1930324
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3798.json