[ol9_u3_baseos_base] openssl-1:3.0.7-24.0.1.el9.aarch64

Name:	openssl
Epoch:	1
Version:	3.0.7
Release:	24.0.1.el9
Architecture:	aarch64
Group:	Unspecified
Size:	1853603
License:	ASL 2.0
RPM:	openssl-3.0.7-24.0.1.el9.aarch64.rpm
Source RPM:	openssl-3.0.7-24.0.1.el9.src.rpm
Build Date:	Wed Oct 25 2023
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.openssl.org/
Summary:	Utilities from the general purpose cryptography library with TLS implementation
Description:	The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols.

Changelog (Show File list) (Show related packages)

Thu Jul 13 2023 EL Errata <el-errata_ww@oracle.com> - 3.0.7-24.0.1
```
- Replace upstream references [Orabug: 34340177]
```

Wed Jul 12 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-24

- Make FIPS module configuration more crypto-policies friendly
  Related: rhbz#2216256

Tue Jul 11 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-23

- Add a workaround for lack of EMS in FIPS mode
  Resolves: rhbz#2216256

Thu Jul 06 2023 Sahana Prasad <sahana@redhat.com> - 1:3.0.7-22

- Remove unsupported curves from nist_curves.
  Resolves: rhbz#2069336

Mon Jun 26 2023 Sahana Prasad <sahana@redhat.com> - 1:3.0.7-21

- Remove the listing of brainpool curves in FIPS mode.
  Related: rhbz#2188180

Tue May 30 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-20

- Fix possible DoS translating ASN.1 object identifiers
  Resolves: CVE-2023-2650
- Release the DRBG in global default libctx early
  Resolves: rhbz#2211340

Mon May 22 2023 Clemens Lang <cllang@redhat.com> - 1:3.0.7-19

- Re-enable DHX keys in FIPS mode, disable FIPS 186-4 parameter validation and generation in FIPS mode
  Resolves: rhbz#2169757

Thu May 18 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-18

- Use OAEP padding and aes-128-cbc by default in cms command in FIPS mode
  Resolves: rhbz#2160797

Tue May 09 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-17

- Enforce using EMS in FIPS mode - better alerts
  Related: rhbz#2157951

Tue May 02 2023 Sahana Prasad <sahana@redhat.com> - 1:3.0.7-16

- Upload new upstream sources without manually hobbling them.
- Remove the hobbling script as it is redundant. It is now allowed to ship
  the sources of patented EC curves, however it is still made unavailable to use
  by compiling with the 'no-ec2m' Configure option. The additional forbidden
  curves such as P-160, P-192, wap-tls curves are manually removed by updating
  0011-Remove-EC-curves.patch.
- Enable Brainpool curves.
- Apply the changes to ec_curve.c and  ectest.c as a new patch
  0010-Add-changes-to-ectest-and-eccurve.patch instead of replacing them.
- Modify 0011-Remove-EC-curves.patch to allow Brainpool curves.
- Modify 0011-Remove-EC-curves.patch to allow code under macro OPENSSL_NO_EC2M.
  Resolves: rhbz#2130618, rhbz#2188180