Oval Definition:
oval:org.opensuse.security:def:125980
Revision Date
:
2019-10-01
Version
:
1
Title
:
Security update for openssl-1_0_0 (Moderate)
Description
:
This update for openssl-1_0_0 fixes the following issues:
OpenSSL Security Advisory [10 September 2019]
CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003) * CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250)
In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1131291
1150003
1150250
CVE-2019-1547
CVE-2019-1563
SUSE-SU-2019:2504-1
Platform(s)
:
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Software Development Kit 12 SP4
Product(s)
:
Definition Synopsis
Release Information
SUSE Linux Enterprise Desktop 12 SP4 is installed
OR
SUSE Linux Enterprise Server 12 SP4 is installed
OR
SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
OR
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
AND
libopenssl-1_0_0-devel-1.0.2p-3.11.1 is installed
BACK