What is the severity of RHSA-2024:7846?

The severity of RHSA-2024:7846 is classified as low.

How do I fix RHSA-2024:7846?

To fix RHSA-2024:7846, update the OpenSSL package to version 1.1.1k-14.el8_6.

RHSA-2024:7846 affects various Red Hat Enterprise Linux systems, including x86_64 and Power LE architectures.

RHSA-2024:7846 addresses a buffer overread issue in the SSL_select_next_proto function of OpenSSL.

Yes, the specific OpenSSL package version required for the fix is 1.1.1k-14.el8_6.

9/10/2024

21/10/2024

First published: Wed Oct 09 2024(Updated: )

Low: openssl security update

Affected Software	Affected Version	How to fix
redhat/openssl	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-debuginfo	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-debuginfo	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-debugsource	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-debugsource	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-devel	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-devel	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-libs	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-libs	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-libs-debuginfo	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-libs-debuginfo	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-perl	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-debuginfo	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-debugsource	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-devel	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-libs	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-libs-debuginfo	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
redhat/openssl-perl	<1.1.1k-14.el8_6	1.1.1k-14.el8_6
Red Hat Enterprise Linux for SAP Solutions
Red Hat Enterprise Linux Server
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions
Red Hat Enterprise Linux Server

What is the severity of RHSA-2024:7846?
The severity of RHSA-2024:7846 is classified as low.
How do I fix RHSA-2024:7846?
To fix RHSA-2024:7846, update the OpenSSL package to version 1.1.1k-14.el8_6.
Which systems are affected by RHSA-2024:7846?
RHSA-2024:7846 affects various Red Hat Enterprise Linux systems, including x86_64 and Power LE architectures.
What does the vulnerability RHSA-2024:7846 address?
RHSA-2024:7846 addresses a buffer overread issue in the SSL_select_next_proto function of OpenSSL.
Is there a specific OpenSSL package version required for the fix in RHSA-2024:7846?
Yes, the specific OpenSSL package version required for the fix is 1.1.1k-14.el8_6.

agent/severity
agent/type
agent/title
agent/last-modified-date
agent/references
agent/first-publish-date
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2024:7846
agent/software-canonical-lookup
agent/remedy
agent/source
agent/event
agent/softwarecombine
agent/tags
collector/redhat-errata-latest
agent/software-canonical-lookup-request
package-manager/redhat
vendor/red hat
canonical/red hat enterprise linux for sap solutions
canonical/red hat enterprise linux server
canonical/red hat enterprise linux server for power le - update services for sap solutions