Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 1934534 - Rebase OpenSSL to 1.1.1k
Summary: Rebase OpenSSL to 1.1.1k
Keywords:
Status: ASSIGNED
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: openssl
Version: 8.5
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: rc
: ---
Assignee: Sahana Prasad
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-03-03 12:52 UTC by Sahana Prasad
Modified: 2022-09-01 08:28 UTC (History)
1 user (show)

Fixed In Version: openssl-1.1.1k-1.el8
Doc Type: No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed:
Type: Bug
Target Upstream Version:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github openssl openssl issues 16075 0 None open OpenSSL regression when a servername callback is set 2021-07-14 13:54:30 UTC
Red Hat Issue Tracker TBC-300 0 None None None 2021-08-04 08:15:13 UTC

Description Sahana Prasad 2021-03-03 12:52:33 UTC
Rebase to 1.1.1j will fix the following low and moderate CVEs
CVE-2021-23841
CVE-2021-23839
CVE-2021-23840

Comment 14 Sahana Prasad 2021-06-24 07:41:37 UTC
We had one failed QA, 2 new regressions and 1 backporting required to finish this rebase.
Moving dev ITM to 17, (might take another 1/2 extra days in ITM 18).
QE ITM to 19 (discussed with szidek on #crypto)


Note You need to log in before you can comment on or make changes to this bug.