{"id":"CLSA-2023-1680210075","summary":"openssl: Fix of 2 CVEs","details":"- CVE-2022-4304: fix timing based side channel in RSA decryption\n- CVE-2022-4450: avoid dangling pointers in PEM_read_bio_ex()","modified":"2026-05-27T11:18:29.400455837Z","published":"2023-03-30T21:01:15Z","upstream":["CVE-2022-4304","CVE-2022-4450"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.5-els/CLSA-2023-1680210075.html"}],"affected":[{"package":{"name":"openssl","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/openssl?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1k-5.el8.5.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1680210075.json"}},{"package":{"name":"openssl-devel","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/openssl-devel?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1k-5.el8.5.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1680210075.json"}},{"package":{"name":"openssl-libs","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/openssl-libs?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1k-5.el8.5.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1680210075.json"}},{"package":{"name":"openssl-perl","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/openssl-perl?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1k-5.el8.5.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1680210075.json"}},{"package":{"name":"openssl-static","ecosystem":"TuxCare:CentOS:8.5","purl":"pkg:rpm/tuxcare/openssl-static?distro=centos-8.5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1k-5.el8.5.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2023-1680210075.json"}}],"schema_version":"1.7.5"}