{"id":"CLSA-2022-1643727489","summary":"Fix of CVE: CVE-2021-23840, CVE-2021-3712, CVE-2021-23841","details":"- CVE-2021-3712: openssl: Read buffer overruns processing ASN.1 strings\n- CVE-2021-23840: openssl: integer overflow in CipherUpdate\n- CVE-2021-23841: openssl: NULL pointer dereference in X509_issuer_and_serial_hash()","modified":"2026-06-01T00:33:10.120923523Z","published":"2022-02-01T14:58:09Z","upstream":["CVE-2021-23840","CVE-2021-3712","CVE-2021-23841"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.4-els/CLSA-2022-1643727489.html"}],"affected":[{"package":{"name":"openssl","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/openssl?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1g-15.el8.4.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1643727489.json"}},{"package":{"name":"openssl-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/openssl-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1g-15.el8.4.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1643727489.json"}},{"package":{"name":"openssl-libs","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/openssl-libs?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1g-15.el8.4.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1643727489.json"}},{"package":{"name":"openssl-perl","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/openssl-perl?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1g-15.el8.4.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1643727489.json"}},{"package":{"name":"openssl-static","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/openssl-static?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.1.1g-15.el8.4.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1643727489.json"}}],"schema_version":"1.7.5"}