Security fix for CVE-2022-3602 and CVE-2022-3786
sudo dnf upgrade --refresh --advisory=FEDORA-2022-0f1d2e0537
This update has been submitted for testing by dbelyavs.
This update's test gating status has been changed to 'waiting'.
Tested on x86_64 and aarch64 across a number of services that use openssl inc openssh, postfix, dovecot, httpd using TLS1.2 and 1.3 and a number of client apps
If the build fixes CVE-2022-3786, then BZ#2139151 and BZ#2139104 should also be linked to this update?
As soon as the test gating status changes to "passed", another +1 (even from someone who already gave +1) will be necessary to get it submitted for stable.
adamwill edited this update.
Works fine within F37 x86_64 KVM VM. CVEs not verified/checked.
This update's test gating status has been changed to 'failed'.
This update's test gating status has been changed to 'passed'.
This update has been submitted for stable by adamwill.
This update has been pushed to stable.
how did you test for the CVEs? Thank you.
Please login to add feedback.
Confirm request to re-trigger tests.
Copyright © 2007-2023 Red Hat, Inc. and
bodhi-server 7.0.1 on
bodhi is Free Software.
if you have any problems. Read the documentation.