Upgrade Oracle:8 kernel-uek-container to version 0:5.15.0-303.171.5.2.el8uek or higher. This issue was patched in ELSA-2024-12887 .

openssl vulnerabilities

Known vulnerabilities in the openssl package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L CVE-2024-41996	*
M CVE-2024-6119	<3.0.13-0ubuntu3.4
L CVE-2024-5535	<3.0.13-0ubuntu3.2
L CVE-2024-2511	<3.0.13-0ubuntu3.2
L CVE-2024-4603	<3.0.13-0ubuntu3.2
L CVE-2024-4741	<3.0.13-0ubuntu3.2
L Use of a Broken or Risky Cryptographic Algorithm	<1.1.1d-2ubuntu1
L Integer Overflow or Wraparound	<1.1.1j-1ubuntu1
H NULL Pointer Dereference	<1.1.1j-1ubuntu3
M Out-of-bounds Read	<1.1.1l-1ubuntu1
H Buffer Overflow	<1.1.1l-1ubuntu1
H Loop with Unreachable Exit Condition ('Infinite Loop')	<3.0.2-0ubuntu1
M Improper Certificate Validation	<3.0.2-0ubuntu2
M OS Command Injection	<3.0.2-0ubuntu2
L Use of a Broken or Risky Cryptographic Algorithm	<3.0.2-0ubuntu2
L Incomplete Cleanup	<3.0.2-0ubuntu2
M Use of a Broken or Risky Cryptographic Algorithm	<3.0.5-2ubuntu1
L NULL Pointer Dereference	<3.0.5-2ubuntu2
H Buffer Overflow	<3.0.5-2ubuntu2
H Buffer Overflow	<3.0.5-2ubuntu2
L Improper Locking	<3.0.7-1ubuntu1
M Information Exposure	<3.0.8-1ubuntu1
M Double Free	<3.0.8-1ubuntu1
H Access of Resource Using Incompatible Type ('Type Confusion')	<3.0.8-1ubuntu1
M Use After Free	<3.0.8-1ubuntu1
L Improper Certificate Validation	<3.0.8-1ubuntu2
L Improper Certificate Validation	<3.0.8-1ubuntu2
L Improper Certificate Validation	<3.0.8-1ubuntu2
L Out-of-bounds Read	<3.0.8-1ubuntu3
M Allocation of Resources Without Limits or Throttling	<3.0.8-1ubuntu3
M CVE-2023-5363	<3.0.10-1ubuntu2.1
L Improper Check for Unusual or Exceptional Conditions	<3.0.10-1ubuntu4
L Out-of-bounds Write	<3.0.10-1ubuntu4
L CVE-2023-6237	<3.0.10-1ubuntu4
L CVE-2024-0727	<3.0.10-1ubuntu4
M Cryptographic Issues	<1.0.1f-1ubuntu9

Vulnerability

Vulnerable Version

CVE-2024-41996