Werk #15687: Update openssl to 1.1.1t

Component Core & setup
Title Update openssl to 1.1.1t
Date May 18, 2023
Level Trivial Change
Class Security Fix
Compatibility Compatible - no manual interaction needed
Checkmk versions & editions
2.3.0b1
Not yet released
Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)
2.3.0b1 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)
2.2.0p1 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)
2.1.0p29 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
2.0.0p37 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)

With this Werk openssl is updated from 1.1.1q to 1.1.1t.

This fixes several CVEs:

  • CVE-2023-0215
  • CVE-2023-0286
  • CVE-2023-0464
  • CVE-2023-0465
  • CVE-2023-0466
  • CVE-2022-4304
  • CVE-2022-4450

To our knowledge none of these vulnerabilities is exploitable in Checkmk.

We rate this with a CVSS of 0 (None) (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N). This CVSS is primarily meant to please automatic scanners.

To the list of all Werks