[ol9_u3_security_validation] openssl-10:3.2.2-6.0.1.el9_5_fips.aarch64

Name:	openssl
Epoch:	10
Version:	3.2.2
Release:	6.0.1.el9_5_fips
Architecture:	aarch64
Group:	Unspecified
Size:	2054770
License:	ASL 2.0
RPM:	openssl-3.2.2-6.0.1.el9_5_fips.aarch64.rpm
Source RPM:	openssl-3.2.2-6.0.1.el9_5_fips.src.rpm
Build Date:	Mon Nov 18 2024
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.openssl.org/
Summary:	Utilities from the general purpose cryptography library with TLS implementation
Description:	The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols.

Changelog (Show File list) (Show related packages)

Thu Nov 14 2024 Pooja Senthil Kumar <pooja.senthil.kumar@oracle.com> - 1:3.2.2-6.0.1_fips

- Replace upstream references in fips man pages [Orabug: 35824276]
- Add FIPS package change: add fips suffix to Release and
  set Epoch to 10 [Orabug: 35824276]
- Update FIPS module name and remove upstream references from
  fips_module_indicators manpage [Orabug: 35824276]

Wed Oct 30 2024 Darren Archibald <darren.archibald@oracle.com> - 1:3.2.2-6.0.1

- Enable openssl-fips-provider dependency [Orabug: 36504822]
- Temporary disable openssl-fips-provider dependency [Orabug: 36504822]
- Replace upstream references [Orabug: 34340177]

Thu Sep 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-6
```
- rebuilt
  Related: RHEL-55339
```

Wed Sep 04 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-5

- Fix CVE-2024-6119: Possible denial of service in X.509 name checks
  Resolves: RHEL-55339

Wed Aug 21 2024 Clemens Lang <cllang@redhat.com> - 1:3.2.2-4

- Fix CVE-2024-5535: SSL_select_next_proto buffer overread
  Resolves: RHEL-45657

Sat Jun 22 2024 Daiki Ueno <dueno@redhat.com> - 1:3.2.2-3

- Replace HKDF backward compatibility patch with the official one
  Related: RHEL-40823

Wed Jun 12 2024 Daiki Ueno <dueno@redhat.com> - 1:3.2.2-2

- Add workaround for EVP_PKEY_CTX_add1_hkdf_info with older providers
  Resolves: RHEL-40823

Wed Jun 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-1

- Rebase to OpenSSL 3.2.2. Fixes CVE-2024-2511, CVE-2024-4603, CVE-2024-4741,
  and Minerva attack.
  Resolves: RHEL-32148
  Resolves: RHEL-36792
  Resolves: RHEL-38514
  Resolves: RHEL-39111

Thu May 23 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.1-2
```
- Update RNG changing for FIPS purpose
  Resolves: RHEL-35380
```
Wed Apr 03 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.1-1
```
- Rebasing OpenSSL to 3.2.1
  Resolves: RHEL-26271
```