CLSA-2022-1657816793

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1657816793.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLSA-2022-1657816793

Upstream

CVE-2022-1292

CVE-2022-2068

Published

2022-07-14T16:39:53Z

Modified

2026-05-27T11:18:25.502273449Z

Summary

Fixed CVEs in openssl: CVE-2022-1292, CVE-2022-2068

Details

CVE-2022-1292: c_rehash: Do not use shell to invoke openssl to prevent command injection
CVE-2022-2068: c_rehash: Fix file operations to prevent command injection
Update expired SCT certificates

References

https://errata.cloudlinux.com/centos8.4-els/CLSA-2022-1657816793.html

Affected packages

TuxCare:CentOS:8.4 / openssl

Package

Name: openssl
Purl: pkg:rpm/tuxcare/openssl?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1657816793.json"

TuxCare:CentOS:8.4 / openssl-devel

Package

Name: openssl-devel
Purl: pkg:rpm/tuxcare/openssl-devel?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1657816793.json"

TuxCare:CentOS:8.4 / openssl-libs

Package

Name: openssl-libs
Purl: pkg:rpm/tuxcare/openssl-libs?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1657816793.json"

TuxCare:CentOS:8.4 / openssl-perl

Package

Name: openssl-perl
Purl: pkg:rpm/tuxcare/openssl-perl?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1657816793.json"

TuxCare:CentOS:8.4 / openssl-static

Package

Name: openssl-static
Purl: pkg:rpm/tuxcare/openssl-static?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1657816793.json"