Oval Definition:oval:org.opensuse.security:def:201917023
Revision Date:2022-06-30Version:1
Title:CVE-2019-17023
Description:

After a HelloRetryRequest has been sent, the client may negotiate a lower protocol that TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. This vulnerability affects Firefox < 72.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2019-17023
SUSE CVE-2019-17023
Platform(s):openSUSE Tumbleweed
SUSE CaaS Platform 4.0
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Manager Proxy 4.0
SUSE Manager Retail Branch Server 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • MozillaFirefox-92.0-1.2 is installed
  • OR MozillaFirefox-branding-upstream-92.0-1.2 is installed
  • OR MozillaFirefox-devel-92.0-1.2 is installed
  • OR MozillaFirefox-translations-common-92.0-1.2 is installed
  • OR MozillaFirefox-translations-other-92.0-1.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.0 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR MozillaFirefox-translations-other is affected
    • Definition Synopsis
  • Release Information
  • SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND MozillaFirefox is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR MozillaFirefox-translations-other is affected
    • BACK