Oval Definition:oval:org.opensuse.security:def:20111945
Revision Date:2022-05-20Version:1
Title:CVE-2011-1945
Description:

The elliptic curve cryptography (ECC) subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm (ECDSA) is used for the ECDHE_ECDSA cipher suite, does not properly implement curves over binary fields, which makes it easier for context-dependent attackers to determine private keys via a timing attack and a lattice calculation.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2011-1945
Mitre CVE-2011-1945
SUSE CVE-2011-1945
openSUSE-SU-2011:0634-1
openSUSE-SU-2011:0634-1
Platform(s):openSUSE 11.3
openSUSE 11.4
SLE SDK 10 SP4 for IBM iSeries and IBM pSeries
SLE SDK 10 SP4 for IBM zSeries
SLE SDK 10 SP4 for IPF
SLE SDK 10 SP4 for x86
SLE SDK 10 SP4 for X86-64
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for x86
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise SDK 10 SP3
SUSE Linux Enterprise Server 10 SP3
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP4 for IBM POWER
SUSE Linux Enterprise Server 10 SP4 for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP4 for IPF
SUSE Linux Enterprise Server 10 SP4 for x86
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server for SAP 10 SP3
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
SUSE Linux Enterprise Software Development Kit 11 SP1
SUSE Linux Enterprise Teradata 10 SP3 for AMD64 and Intel EM64T
Product(s):
Definition Synopsis
  • Release Information
  • sles10-sp3 is installed
  • openssl-32bit less than 0.9.8a-18.45.47.1
  • OR openssl-64bit less than 0.9.8a-18.45.47.1
  • OR openssl-devel-32bit less than 0.9.8a-18.45.47.1
  • OR openssl-devel-64bit less than 0.9.8a-18.45.47.1
  • OR openssl-devel less than 0.9.8a-18.45.47.1
  • OR openssl-doc less than 0.9.8a-18.45.47.1
  • OR openssl-x86 less than 0.9.8a-18.45.47.1
  • OR openssl less than 0.9.8a-18.45.47.1
  • OR
  • sles10-sp3-sap is installed
  • openssl-32bit less than 0.9.8a-18.45.47.1
  • OR openssl-devel-32bit less than 0.9.8a-18.45.47.1
  • OR openssl-devel less than 0.9.8a-18.45.47.1
  • OR openssl-doc less than 0.9.8a-18.45.47.1
  • OR openssl less than 0.9.8a-18.45.47.1
  • OR
  • sles10-sp3-sdk is installed
  • AND openssl-doc less than 0.9.8a-18.45.47.1
  • OR Package Information
  • sles10-sp4 is installed
  • openssl-32bit less than 0.9.8a-18.52.1
  • OR openssl-64bit less than 0.9.8a-18.52.1
  • OR openssl-devel-32bit less than 0.9.8a-18.52.1
  • OR openssl-devel-64bit less than 0.9.8a-18.52.1
  • OR openssl-devel less than 0.9.8a-18.52.1
  • OR openssl-doc less than 0.9.8a-18.52.1
  • OR openssl-x86 less than 0.9.8a-18.52.1
  • OR openssl less than 0.9.8a-18.52.1
  • OR
  • sles10-sp4-sdk is installed
  • AND openssl-doc less than 0.9.8a-18.52.1
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND Package Information
  • libopenssl-devel-0.9.8j-0.66 is installed
  • OR libopenssl0_9_8-0.9.8h-30.34 is installed
  • OR libopenssl0_9_8-32bit-0.9.8h-30.34 is installed
  • OR libopenssl0_9_8-hmac-0.9.8j-0.44 is installed
  • OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.44 is installed
  • OR libopenssl0_9_8-hmac-x86-0.9.8j-0.44 is installed
  • OR libopenssl0_9_8-x86-0.9.8j-0.44 is installed
  • OR openssl-0.9.8h-30.34 is installed
  • OR openssl-doc-0.9.8h-30.34 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • libopenssl-devel-0.9.8j-0.66 is installed
  • OR libopenssl0_9_8-0.9.8h-30.34 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-0.66 is installed
  • OR libopenssl0_9_8-hmac-0.9.8j-0.66 is installed
  • OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.66 is installed
  • OR libopenssl0_9_8-hmac-x86-0.9.8j-0.44 is installed
  • OR libopenssl0_9_8-x86-0.9.8j-0.44 is installed
  • OR openssl-0.9.8h-30.34 is installed
  • OR openssl-doc-0.9.8h-30.34 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND
  • libopenssl0_9_8-0.9.8h-30.34 is installed
  • OR libopenssl0_9_8-32bit-0.9.8h-30.34 is installed
  • OR libopenssl0_9_8-hmac-0.9.8j-0.72 is installed
  • OR openssl-0.9.8h-30.34 is installed
  • OR openssl-doc-0.9.8h-30.34 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • libopenssl-devel-0.9.8j-0.66.1 is installed
  • OR libopenssl0_9_8-0.9.8h-30.34.1 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-0.66.1 is installed
  • OR libopenssl0_9_8-hmac-0.9.8j-0.66.1 is installed
  • OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.66.1 is installed
  • OR libopenssl0_9_8-hmac-x86-0.9.8j-0.44.1 is installed
  • OR libopenssl0_9_8-x86-0.9.8j-0.44.1 is installed
  • OR openssl-0.9.8h-30.34.1 is installed
  • OR openssl-doc-0.9.8h-30.34.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND
  • libopenssl-devel-0.9.8j-0.66.1 is installed
  • OR libopenssl0_9_8-0.9.8h-30.34.1 is installed
  • OR libopenssl0_9_8-32bit-0.9.8h-30.34.1 is installed
  • OR libopenssl0_9_8-hmac-0.9.8j-0.72.1 is installed
  • OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.66.1 is installed
  • OR openssl-0.9.8h-30.34.1 is installed
  • OR openssl-doc-0.9.8h-30.34.1 is installed
    • BACK