Synopsis: Moderate: openssl security update Advisory ID: SLSA-2021:3798-1 Issue Date: 2021-10-12 CVE Numbers: CVE-2021-23841 CVE-2021-23840 -- Security Fix(es): * openssl: integer overflow in CipherUpdate (CVE-2021-23840) * openssl: NULL pointer dereference in X509_issuer_and_serial_hash() (CVE-2021-23841) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE -- - Scientific Linux Development Team