Oval Definition:oval:org.opensuse.security:def:20111473
Revision Date:2022-05-20Version:1
Title:CVE-2011-1473
Description:

** DISPUTED ** OpenSSL before 0.9.8l, and 0.9.8m through 1.x, does not properly restrict client-initiated renegotiation within the SSL and TLS protocols, which might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection, a different vulnerability than CVE-2011-5094. NOTE: it can also be argued that it is the responsibility of server deployments, not a security library, to prevent or limit renegotiation when it is inappropriate within a specific environment.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2011-1473
Mitre CVE-2011-1473
SUSE CVE-2011-1473
Platform(s):SLE SDK 10 SP4 for IBM iSeries and IBM pSeries
SLE SDK 10 SP4 for IBM zSeries
SLE SDK 10 SP4 for IPF
SLE SDK 10 SP4 for x86
SLE SDK 10 SP4 for X86-64
SUSE CORE 9 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise High Availability Extension 11 SP2
SUSE Linux Enterprise High Availability Extension 11 SP3
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP3 LTSS for x86
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP4 for IBM POWER
SUSE Linux Enterprise Server 10 SP4 for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP4 for IPF
SUSE Linux Enterprise Server 10 SP4 for x86
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for Teradata
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP1
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Teradata 10 SP3 for AMD64 and Intel EM64T
Product(s):
Definition Synopsis
  • Release Information
  • sles10-sp3-ltss is installed
  • AND
  • apache2-devel less than 2.2.3-16.32.45.1
  • OR apache2-doc less than 2.2.3-16.32.45.1
  • OR apache2-example-pages less than 2.2.3-16.32.45.1
  • OR apache2-prefork less than 2.2.3-16.32.45.1
  • OR apache2-worker less than 2.2.3-16.32.45.1
  • OR apache2 less than 2.2.3-16.32.45.1
  • OR Package Information
  • sles10-sp4 is installed
  • AND
  • apache2-devel less than 2.2.3-16.42.2
  • OR apache2-doc less than 2.2.3-16.42.2
  • OR apache2-example-pages less than 2.2.3-16.42.2
  • OR apache2-prefork less than 2.2.3-16.42.2
  • OR apache2-worker less than 2.2.3-16.42.2
  • OR apache2 less than 2.2.3-16.42.2
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • lighttpd-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_cml-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_magnet-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_mysql_vhost-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_rrdtool-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_trigger_b4_dl-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_webdav-1.4.20-2.54.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • apache2-2.2.12-1.28 is installed
  • OR apache2-doc-2.2.12-1.28 is installed
  • OR apache2-example-pages-2.2.12-1.28 is installed
  • OR apache2-prefork-2.2.12-1.28 is installed
  • OR apache2-utils-2.2.12-1.28 is installed
  • OR apache2-worker-2.2.12-1.28 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • lighttpd-1.4.20-2.54 is installed
  • OR lighttpd-mod_cml-1.4.20-2.54 is installed
  • OR lighttpd-mod_magnet-1.4.20-2.54 is installed
  • OR lighttpd-mod_mysql_vhost-1.4.20-2.54 is installed
  • OR lighttpd-mod_rrdtool-1.4.20-2.54 is installed
  • OR lighttpd-mod_trigger_b4_dl-1.4.20-2.54 is installed
  • OR lighttpd-mod_webdav-1.4.20-2.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND Package Information
  • apache2-2.2.12-1.28 is installed
  • OR apache2-doc-2.2.12-1.28 is installed
  • OR apache2-example-pages-2.2.12-1.28 is installed
  • OR apache2-prefork-2.2.12-1.28 is installed
  • OR apache2-utils-2.2.12-1.28 is installed
  • OR apache2-worker-2.2.12-1.28 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND
  • apache2-2.2.12-1.28 is installed
  • OR apache2-doc-2.2.12-1.28 is installed
  • OR apache2-example-pages-2.2.12-1.28 is installed
  • OR apache2-prefork-2.2.12-1.28 is installed
  • OR apache2-utils-2.2.12-1.28 is installed
  • OR apache2-worker-2.2.12-1.28 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • lighttpd-1.4.20-2.54 is installed
  • OR lighttpd-mod_cml-1.4.20-2.54 is installed
  • OR lighttpd-mod_magnet-1.4.20-2.54 is installed
  • OR lighttpd-mod_mysql_vhost-1.4.20-2.54 is installed
  • OR lighttpd-mod_rrdtool-1.4.20-2.54 is installed
  • OR lighttpd-mod_trigger_b4_dl-1.4.20-2.54 is installed
  • OR lighttpd-mod_webdav-1.4.20-2.54 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND Package Information
  • apache2-2.2.12-1.28 is installed
  • OR apache2-doc-2.2.12-1.28 is installed
  • OR apache2-example-pages-2.2.12-1.28 is installed
  • OR apache2-prefork-2.2.12-1.28 is installed
  • OR apache2-utils-2.2.12-1.28 is installed
  • OR apache2-worker-2.2.12-1.28 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • lighttpd-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_cml-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_magnet-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_mysql_vhost-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_rrdtool-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_trigger_b4_dl-1.4.20-2.54.1 is installed
  • OR lighttpd-mod_webdav-1.4.20-2.54.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND
  • apache2-2.2.12-1.28.1 is installed
  • OR apache2-doc-2.2.12-1.28.1 is installed
  • OR apache2-example-pages-2.2.12-1.28.1 is installed
  • OR apache2-prefork-2.2.12-1.28.1 is installed
  • OR apache2-utils-2.2.12-1.28.1 is installed
  • OR apache2-worker-2.2.12-1.28.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND Package Information
  • apache2-2.2.12-1.28.1 is installed
  • OR apache2-doc-2.2.12-1.28.1 is installed
  • OR apache2-example-pages-2.2.12-1.28.1 is installed
  • OR apache2-prefork-2.2.12-1.28.1 is installed
  • OR apache2-utils-2.2.12-1.28.1 is installed
  • OR apache2-worker-2.2.12-1.28.1 is installed
    • BACK