| Revision Date: | 2015-01-26 | Version: | 4 |
| Title: | SUSE-SU-2014:1386-1 -- Security update for OpenSSL (important) |
| Description: | This OpenSSL update fixes the following issues: * Session Ticket Memory Leak (CVE-2014-3567) * Build option no-ssl3 is incomplete ((CVE-2014-3568) * Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)Security Issues: * CVE-2014-3513 * CVE-2014-3567 * CVE-2014-3566 * CVE-2014-3568 |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2014-3513
CVE-2014-3566
CVE-2014-3567
CVE-2014-3568
SUSE-SU-2014:1386-1
|
| Platform(s): | SUSE Linux Enterprise Server 11
| Product(s): | OpenSSL
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11.x is installed AND Packages match section
libopenssl-devel is earlier than 0:0.9.8j-0.66.1
OR libopenssl0_9_8 is earlier than 0:0.9.8j-0.66.1
OR libopenssl0_9_8-hmac is earlier than 0:0.9.8j-0.66.1
OR openssl is earlier than 0:0.9.8j-0.66.1
OR openssl-doc is earlier than 0:0.9.8j-0.66.1
OR libopenssl0_9_8-32bit is earlier than 0:0.9.8j-0.66.1
OR libopenssl0_9_8-hmac-32bit is earlier than 0:0.9.8j-0.66.1
|