Oval Definition:oval:org.opensuse.security:def:20222097
Revision Date:2023-06-22Version:1
Title:CVE-2022-2097
Description:

AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed. Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected. Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4). Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p).
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-2097
SUSE CVE-2022-2097
SUSE-CU-2022:1413-1
SUSE-CU-2022:1414-1
SUSE-CU-2022:1415-1
SUSE-CU-2022:1416-1
SUSE-CU-2022:1417-1
SUSE-CU-2022:1418-1
SUSE-CU-2022:1419-1
SUSE-CU-2022:1420-1
SUSE-CU-2022:1421-1
SUSE-CU-2022:1422-1
SUSE-CU-2022:1423-1
SUSE-CU-2022:1424-1
SUSE-CU-2022:1425-1
SUSE-CU-2022:1426-1
SUSE-CU-2022:1427-1
SUSE-CU-2022:1429-1
SUSE-CU-2022:1430-1
SUSE-CU-2022:1431-1
SUSE-CU-2022:1433-1
SUSE-CU-2022:1435-1
SUSE-CU-2022:1436-1
SUSE-CU-2022:1437-1
SUSE-CU-2022:1438-1
SUSE-CU-2022:1439-1
SUSE-CU-2022:1441-1
SUSE-CU-2022:1445-1
SUSE-CU-2022:1447-1
SUSE-CU-2022:1449-1
SUSE-CU-2022:1471-1
SUSE-CU-2022:1615-1
SUSE-CU-2022:1616-1
SUSE-CU-2022:1617-1
SUSE-CU-2022:1736-1
SUSE-CU-2022:1765-1
SUSE-CU-2022:1771-1
SUSE-CU-2022:1780-1
SUSE-IU-2022:760-1
SUSE-IU-2022:761-1
SUSE-IU-2022:763-1
SUSE-IU-2022:814-1
SUSE-IU-2022:817-1
SUSE-IU-2022:836-1
SUSE-IU-2022:853-1
SUSE-IU-2022:859-1
SUSE-IU-2022:878-1
SUSE-IU-2022:953-1
SUSE-IU-2022:954-1
SUSE-IU-2022:955-1
SUSE-SU-2022:2306-1
SUSE-SU-2022:2308-1
SUSE-SU-2022:2309-1
SUSE-SU-2022:2311-1
SUSE-SU-2022:2312-1
SUSE-SU-2022:2328-1
SUSE-SU-2022:2417-1
SUSE-CU-2022:1852-1
openSUSE-SU-2022:2328-1
SUSE-CU-2022:2082-1
SUSE-CU-2022:2083-1
SUSE-CU-2022:2084-1
SUSE-CU-2022:2086-1
SUSE-CU-2022:2087-1
SUSE-CU-2022:2088-1
SUSE-CU-2022:2089-1
SUSE-CU-2022:2090-1
SUSE-CU-2022:2091-1
SUSE-CU-2022:2092-1
SUSE-CU-2022:2093-1
SUSE-CU-2022:2094-1
SUSE-CU-2022:2095-1
SUSE-CU-2022:2123-1
SUSE-CU-2022:2124-1
SUSE-CU-2022:2125-1
SUSE-CU-2022:2126-1
SUSE-CU-2022:2149-1
SUSE-CU-2022:2655-1
SUSE-CU-2022:3269-1
SUSE-CU-2023:1103-1
SUSE-CU-2023:1104-1
SUSE-CU-2023:1105-1
SUSE-CU-2023:1338-1
SUSE-CU-2023:321-1
SUSE-CU-2023:322-1
SUSE-CU-2023:323-1
SUSE-CU-2023:324-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
Image SLES15-SP4-Manager-Server-4-3-BYOS
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
openSUSE Leap Micro 5.2
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Micro 5.2
SUSE Linux Enterprise Module for Basesystem 15 SP4
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Module for Legacy 15 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15 SP2-BCL
SUSE Linux Enterprise Server 15 SP2-LTSS
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.3
Product(s):
Definition Synopsis
  • openSUSE Leap Micro 5.2 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • AND libopenssl-1_1-devel is signed with openSUSE key
  • OR
  • libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • AND libopenssl1_1 is signed with openSUSE key
  • OR
  • libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • AND libopenssl1_1-hmac is signed with openSUSE key
  • OR
  • openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • AND openssl-1_1 is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Legacy 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • libopenssl-1_0_0-devel is not affected
  • OR libopenssl10 is not affected
  • OR libopenssl1_0_0 is not affected
  • OR openssl-1_0_0 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • libopenssl-1_1-devel-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl-3-devel-3.0.1-150400.4.7.1 is installed
  • OR libopenssl1_1-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl1_1-32bit-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl1_1-hmac-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl3-3.0.1-150400.4.7.1 is installed
  • OR openssl-1_1-1.1.1l-150400.7.7.1 is installed
  • OR openssl-3-3.0.1-150400.4.7.1 is installed
  • OR libopenssl-devel is not affected
  • OR openssl is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.1 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • OR openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • OR openssl is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.2 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • OR openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • OR openssl is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Legacy 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • libopenssl-1_0_0-devel is not affected
  • OR libopenssl10 is not affected
  • OR libopenssl1_0_0 is not affected
  • OR openssl-1_0_0 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • libopenssl-1_1-devel-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl-3-devel-3.0.1-150400.4.7.1 is installed
  • OR libopenssl1_1-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl1_1-32bit-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl1_1-hmac-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1l-150400.7.7.1 is installed
  • OR libopenssl3-3.0.1-150400.4.7.1 is installed
  • OR openssl-1_1-1.1.1l-150400.7.7.1 is installed
  • OR openssl-3-3.0.1-150400.4.7.1 is installed
  • OR libopenssl-devel is not affected
  • OR openssl is not affected
  • OR Package Information
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS is installed
  • OR Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure is installed
  • OR Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 is installed
  • OR Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE is installed
  • OR Image SLES15-SP4-Manager-Server-4-3-BYOS is installed
  • OR Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure is installed
  • OR Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 is installed
  • OR Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE is installed
  • AND
  • libopenssl1_1-1.1.1l-150400.7.7.1 is installed
  • OR openssl-1_1-1.1.1l-150400.7.7.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND
  • openssl is not affected
  • OR openssl-1_0_0 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • libopenssl-1_1-devel-1.1.1d-2.69.1 is installed
  • OR libopenssl-1_1-devel-32bit-1.1.1d-2.69.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • libopenssl1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-2.69.1 is installed
  • OR openssl-1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl0_9_8 is not affected
  • OR openssl is not affected
  • OR openssl-1_0_0 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • libopenssl1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-2.69.1 is installed
  • OR openssl-1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl-devel is not affected
  • OR openssl is not affected
  • OR libopenssl-1_0_0-devel is not affected
  • OR libopenssl1_0_0 is not affected
  • OR libopenssl1_0_0-32bit is not affected
  • OR libopenssl1_0_0-hmac is not affected
  • OR libopenssl1_0_0-hmac-32bit is not affected
  • OR openssl-1_0_0 is not affected
  • OR openssl-1_0_0-doc is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 15 SP2-LTSS is installed
  • AND
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-150200.11.51.1 is installed
  • OR openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS is installed
  • AND
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-150200.11.51.1 is installed
  • OR openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 15 SP2-BCL is installed
  • AND
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-150200.11.51.1 is installed
  • OR openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND
  • libopenssl-1_1-devel-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-150200.11.51.1 is installed
  • OR openssl-1_1-1.1.1d-150200.11.51.1 is installed
  • OR libopenssl-devel is not affected
  • OR openssl is not affected
  • OR libopenssl-1_0_0-devel is not affected
  • OR libopenssl1_0_0 is not affected
  • OR openssl-1_0_0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND
  • libopenssl1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-2.69.1 is installed
  • OR openssl-1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl0_9_8 is not affected
  • OR libopenssl-devel is not affected
  • OR openssl is not affected
  • OR libopenssl-1_0_0-devel is not affected
  • OR libopenssl1_0_0 is not affected
  • OR libopenssl1_0_0-32bit is not affected
  • OR libopenssl1_0_0-hmac is not affected
  • OR libopenssl1_0_0-hmac-32bit is not affected
  • OR openssl-1_0_0 is not affected
  • OR openssl-1_0_0-doc is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND
  • libopenssl1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-2.69.1 is installed
  • OR openssl-1_1-1.1.1d-2.69.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND
  • libopenssl1_1-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-2.69.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-2.69.1 is installed
  • OR openssl-1_1-1.1.1d-2.69.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.1l-150500.15.4 is installed
  • OR libopenssl-3-devel-3.0.8-150500.3.1 is installed
  • OR libopenssl1_1-1.1.1l-150500.15.4 is installed
  • OR libopenssl1_1-32bit-1.1.1l-150500.15.4 is installed
  • OR libopenssl1_1-hmac-1.1.1l-150500.15.4 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1l-150500.15.4 is installed
  • OR libopenssl3-3.0.8-150500.3.1 is installed
  • OR openssl-1_1-1.1.1l-150500.15.4 is installed
  • OR openssl-3-3.0.8-150500.3.1 is installed
    • BACK