RHSA-2020:5476: Important: openssl security and bug fix update
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.Security Fix(es): openssl: EDIPARTYNAME NULL pointer de-reference (CVE-2020-1971) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Bug Fix(es): Reject certificates with explicit EC parameters in strict mode (BZ#1891541) Add FIPS selftest for HKDF, SSKDF, SSHKDF, and TLS12PRF; add DHcomputekey KAT to DH selftest (BZ#1891542)
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:5476?
The severity of RHSA-2020:5476 is classified as important.
How do I fix RHSA-2020:5476?
To fix RHSA-2020:5476, update the OpenSSL package to version 1.1.1g-12.el8_3 or later.
Which versions of OpenSSL are affected by RHSA-2020:5476?
OpenSSL versions prior to 1.1.1g-12.el8_3 are affected by RHSA-2020:5476.
What vulnerability is addressed in RHSA-2020:5476?
RHSA-2020:5476 addresses a NULL pointer de-reference vulnerability identified as CVE-2020-1971.
Is a restart required after applying the fix for RHSA-2020:5476?
A restart is not typically required after applying the fix for RHSA-2020:5476, but it is good practice to verify the functionality of the application.