openssl-libs-3.5.0-3.el10 RPM for aarch64

From CentOS Stream 10 BaseOS for aarch64

OpenSSL is a toolkit for supporting cryptography. The openssl-libs
package contains the libraries that are used by various applications which
support cryptographic algorithms and protocols.

Provides

• openssl-libs
• config(openssl-libs)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libcrypto.so.3(OPENSSL_3.0.1)(64bit)
• libcrypto.so.3(OPENSSL_3.0.3)(64bit)
• libcrypto.so.3(OPENSSL_3.0.8)(64bit)
• libcrypto.so.3(OPENSSL_3.0.9)(64bit)
• libcrypto.so.3(OPENSSL_3.1.0)(64bit)
• libcrypto.so.3(OPENSSL_3.2.0)(64bit)
• libcrypto.so.3(OPENSSL_3.3.0)(64bit)
• libcrypto.so.3(OPENSSL_3.4.0)(64bit)
• libcrypto.so.3(OPENSSL_3.5.0)(64bit)
• libssl.so.3()(64bit)
• libssl.so.3(OPENSSL_3.0.0)(64bit)
• libssl.so.3(OPENSSL_3.2.0)(64bit)
• libssl.so.3(OPENSSL_3.3.0)(64bit)
• libssl.so.3(OPENSSL_3.4.0)(64bit)
• libssl.so.3(OPENSSL_3.5.0)(64bit)
• openssl-libs(aarch-64)

Requires

• ca-certificates >= 2008-5
• config(openssl-libs) = 1:3.5.0-3.el10
• crypto-policies >= 20250404-3
• ld-linux-aarch64.so.1()(64bit)
• ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.25)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.38)(64bit)
• libc.so.6(GLIBC_ABI_DT_RELR)(64bit)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libcrypto.so.3(OPENSSL_3.0.1)(64bit)
• libcrypto.so.3(OPENSSL_3.0.3)(64bit)
• libcrypto.so.3(OPENSSL_3.2.0)(64bit)
• libcrypto.so.3(OPENSSL_3.3.0)(64bit)
• libcrypto.so.3(OPENSSL_3.4.0)(64bit)
• libz.so.1()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

Apache-2.0

Changelog

* Wed May 14 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.5.0-3
  - Fix `openssl speed` running in FIPS mode
    Resolves: RHEL-88908
  - pkeyutl ecdsa signature with sha1 shouldn't work by default
    Resolves: RHEL-88911
  - Expose settable params for EVP_SKEY
    Resolves: RHEL-88913
  - Restore RHEL9-style indicators defines
    Resolves: RHEL-88906
  - Enable sslkeylog support
    Resolves: RHEL-90853
  - Fix UEFI builds
    Resolves: RHEL-89137
* Thu Apr 17 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.5.0-2
  - Update depencency on crypto-policies
    Related: RHEL-80811
* Wed Apr 09 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.5.0-1
  - Rebasing OpenSSL to 3.5
    Resolves: RHEL-80811
    Resolves: RHEL-57022
    Resolves: RHEL-24098
    Resolves: RHEL-24097
    Resolves: RHEL-86865
* Wed Jan 29 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-16
  - Fix timing side-channel in ECDSA signature computation (CVE-2024-13176)
    Resolves: RHEL-70879
  - Load system default cipher string from crypto-policies configuration file
    should ignore errors.
    Related: RHEL-71132
  - RFC7250 handshakes with unauthenticated servers don't abort as expected (CVE-2024-12797)
    Resolves: RHEL-76754
  - Fix segfault on printing the temp key from s_client when connection is not established
    Resolves: RHEL-79045
* Thu Jan 02 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-15
  - Fix providers no_cache behavior
    Resolves: RHEL-71903
  - Fix pkcs12 command line segfault
    Resolves: RHEL-70878
  - Print key exchange group for hybrid PQC
    Resolves: RHEL-66163
  - Ensure correct fips.so checksum calculation
    Resolves: RHEL-73170
  - Locally configured providers should not interfere with openssl build-time tests
    Resolves: RHEL-76182
  - Load system default cipher string from crypto-policies configuration file
    include /etc/crypto-policies/back-ends/opensslcnf.config and remove
    /etc/crypto-policies/back-ends/openssl.config.
    Resolves: RHEL-71132
* Tue Oct 29 2024 Troy Dawson <tdawson@redhat.com> - 1:3.2.2-14
  - Bump release for October 2024 mass rebuild:
    Resolves: RHEL-64018
* Thu Oct 17 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-13
  - Ship dummy(empty) openssl/engine.h
    Resolves: RHEL-58178
* Wed Sep 04 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-12
  - Fix CVE-2024-6119: Possible denial of service in X.509 name checks
    Resolves: RHEL-55303
* Wed Aug 21 2024 Clemens Lang <cllang@redhat.com> - 1:3.2.2-11
  - Fix CVE-2024-5535: SSL_select_next_proto buffer overread
    Resolves: RHEL-45692
* Wed Aug 14 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-10
  - Use PBMAC1 by default when creating PKCS#12 files in FIPS mode
    Related: RHEL-36659
  - Support key encapsulation/decapsulation in openssl pkeyutl command
    Resolves: RHEL-54156
  - Fix typo in the patch numeration
    Related: RHEL-41261
  - Enable KTLS, temporary disable KTLS tests
    Related: RHEL-47335
  - Speedup SSL_add_{file,dir}_cert_subjects_to_stack
    Resolves: RHEL-54232
  - Resolve SAST package scan results
    Resolves: RHEL-37561
* Fri Aug 09 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-9
  - An interface to create PKCS #12 files in FIPS compliant way
    Related: RHEL-36659
* Wed Aug 07 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-8
  - An interface to create PKCS #12 files in FIPS compliant way
    Resolves: RHEL-36659
* Wed Jul 10 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-7
  - Disallow SHA1 at SECLEVEL2 in OpenSSL
    Resolves: RHEL-39962
  - SHA-1 signature shouldn't work in normal mode
    Resolves: RHEL-36677
* Mon Jul 01 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-6
  - Do not install ENGINE headers, man pages, and define OPENSSL_NO_ENGINE
    Resolves: RHEL-45704
* Mon Jul 01 2024 Daiki Ueno <dueno@redhat.com> - 1:3.2.2-5
  - Replace HKDF backward compatibility patch with the official one
    Related: RHEL-41261
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 1:3.2.2-4
  - Bump release for June 2024 mass rebuild
* Sat Jun 15 2024 Daiki Ueno <dueno@redhat.com> - 1:3.2.2-3
  - Add workaround for EVP_PKEY_CTX_add1_hkdf_info with older providers
    Resolves: RHEL-41261
* Wed Jun 12 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-2
  - Build openssl with no-atexit
    Resolves: RHEL-40408
* Wed Jun 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.2.2-1
  - Rebase to OpenSSL 3.2.2.
    Related: RHEL-31762
* Mon Jun 03 2024 Sahana Prasad <sahana@redhat.com> - 1:3.2.1-4
  - Synchronize patches from c9s and Fedora
  - Resolves: RHEL-31762
* Tue Feb 13 2024 Sahana Prasad <sahana@redhat.com> - 1:3.2.1-3
  - Temporarily disable ktls to  unblock c10s builds
  - Resolves: RHEL-25259
* Fri Feb 09 2024 Sahana Prasad <sahana@redhat.com> - 1:3.2.1-2
  - Fix version aliasing issue
  - https://github.com/openssl/openssl/issues/23534
* Tue Feb 06 2024 Sahana Prasad <sahana@redhat.com> - 1:3.2.1-1
  - Rebase to upstream version 3.2.1
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.1.4-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.1.4-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Jan 10 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.1.4-2
  - We don't want to ship openssl-pkcs11 in RHEL10/Centos 10
* Thu Oct 26 2023 Sahana Prasad <sahana@redhat.com> - 1:3.1.4-1
  - Rebase to upstream version 3.1.4
* Thu Oct 19 2023 Sahana Prasad <sahana@redhat.com> - 1:3.1.3-1
  - Rebase to upstream version 3.1.3
* Thu Aug 31 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.1.1-4
  - Drop duplicated patch and do some contamination
* Tue Aug 22 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.1.1-3
  - Integrate FIPS patches from CentOS
* Fri Aug 04 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.1.1-2
  - migrated to SPDX license
* Thu Jul 27 2023 Sahana Prasad <sahana@redhat.com> - 1:3.1.1-1
  - Rebase to upstream version 3.1.1
    Resolves: CVE-2023-0464
    Resolves: CVE-2023-0465
    Resolves: CVE-2023-0466
    Resolves: CVE-2023-1255
    Resolves: CVE-2023-2650
* Thu Jul 27 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.8-4
  - Forbid custom EC more completely
    Resolves: rhbz#2223953
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.0.8-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

Files

/etc/pki/tls
/etc/pki/tls/certs
/etc/pki/tls/ct_log_list.cnf
/etc/pki/tls/fips_local.cnf
/etc/pki/tls/misc
/etc/pki/tls/openssl.cnf
/etc/pki/tls/openssl.d
/etc/pki/tls/private
/usr/lib/.build-id
/usr/lib/.build-id/05
/usr/lib/.build-id/05/4af18cce607f74616f69f8ad694164fe59cae8
/usr/lib/.build-id/29
/usr/lib/.build-id/29/1338db4b765a1e424cf45f50c0bf6c74596de4
/usr/lib/.build-id/30
/usr/lib/.build-id/30/796babce8345d34bcb604e14991ba5ad85c8a4
/usr/lib/.build-id/51
/usr/lib/.build-id/51/dcab35850c9a6d93c6b7309dee322ae471df79
/usr/lib/.build-id/88
/usr/lib/.build-id/88/ed6144825cf7a2384fb4adabb828d52b901278
/usr/lib/.build-id/ba
/usr/lib/.build-id/ba/9628e886ff1d623a2c9f383c91af2db0aa6410
/usr/lib/.build-id/d8
/usr/lib/.build-id/d8/5c942a7bfd85181676c0dfe36e308ee75c304c
/usr/lib/.build-id/dd
/usr/lib/.build-id/dd/eeb4ad90bd783c379900f24e4f66084149810d
/usr/lib64/engines-3
/usr/lib64/engines-3/afalg.so
/usr/lib64/engines-3/capi.so
/usr/lib64/engines-3/loader_attic.so
/usr/lib64/engines-3/padlock.so
/usr/lib64/libcrypto.so.3
/usr/lib64/libcrypto.so.3.5.0
/usr/lib64/libssl.so.3
/usr/lib64/libssl.so.3.5.0
/usr/lib64/ossl-modules
/usr/lib64/ossl-modules/fips.so
/usr/lib64/ossl-modules/legacy.so
/usr/share/licenses/openssl-libs
/usr/share/licenses/openssl-libs/LICENSE.txt

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed May 21 02:50:27 2025