How can i update openssl 1.1.1 to latest 3.0.7 version on Almalinux 8.5?
Alma Linux 8.5 is not affected by the cve-2022-3602 and cve-2022-3786 vulnerabilities because it uses openssl 1.1.1.
However, since openssl 1.1.1 will be unsupported on September 11, 2023, I would like to upgrade the server side to version 3.0.7.
I dnf uped, after that, I installed the following two EPEL repolist.
After that, I typed sudo yum install openssl3, then, 3.0.1-43.el8.1 was installed.
Is this version is fixed cve-2022-3602 and cve-2022-3786 vulnerabilities?
I did dnf up without adding EPEL, but openssl3 was not installed.
Please let me know if you know of any page where I can check if 3.0.1-43.el8.1 is the version that addresses the cve-2022-3602 and cve-2022-3786 vulnerabilities.
epel Extra Packages for Enterprise Linux 8 - x86_64
epel-next Extra Packages for Enterprise Linux 8 - Next - x86_64
[root@ip ~]# sudo yum install openssl3 Last metadata expiration check: 0:10:59 ago on Fri 11 Nov 2022 04:45:37 PM JST. Dependencies resolved. ================================================================================
** Package Architecture Version Repository Size** ================================================================================ Installing:
** openssl3 x86_64 3.0.1-43.el8.1 epel 1.1 M** Installing dependencies:
** openssl3-libs x86_64 3.0.1-43.el8.1 epel 2.4 M**
RHEL 8 (and hence Alma 8) will have supported version of openssl its entire life-cycle
EPEL is extra packages – volunteer additions; no SLA like RHEL content
The “server” will not automatically use openssl3; you would have to replace all applications/services with versions that do. It would be easier to switch to distro that does have openssl3 natively. For example, AlmaLinux 9.
I am currently using OpenVPN Access Server on Alma Linux, but since OpenVPN Access Server is only supported on RHEL 7 and RHEL 8, and since it seemed difficult to upgrade the entire OS from Alma Linux 8.6 to Alma Linux 9 I was looking for a fix for the openss3 vulnerability that works on AlmaLinux 8.