Oval Definition:	oval:org.opensuse.security:def:52602
Revision Date: 2020-12-01 Version: 1 Title: Security update for openssl-1_0_0 (Moderate) Description: This update for openssl-1_0_0 fixes the following issues: OpenSSL Security Advisory [10 September 2019] CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003) * CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250) In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291). Family: unix Class: patch Status: Reference(s): 1012382 1031392 1051510 1055120 1061840 1065729 1082519 1085030 1090078 1094244 1098782 1101669 1102495 1103269 1103405 1103587 1103636 1104888 1105190 1105795 1106105 1106240 1106948 1107783 1107829 1107928 1107947 1108096 1108170 1108281 1108323 1108399 1108823 1109244 1109333 1109336 1109337 1109603 1109806 1109859 1109979 1109992 1110006 1110301 1110363 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1131291 1150003 1150250 900031 901223 901277 905158 912214 CVE-2009-2285 CVE-2009-2347 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-3430 CVE-2010-3431 CVE-2010-3853 CVE-2010-4665 CVE-2011-0192 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1167 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2011-2895 CVE-2011-3148 CVE-2011-3149 CVE-2011-4349 CVE-2012-1173 CVE-2012-2113 CVE-2012-3401 CVE-2012-4564 CVE-2013-1960 CVE-2013-1961 CVE-2013-1988 CVE-2013-2064 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 CVE-2013-6369 CVE-2014-2583 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-7300 CVE-2014-9556 CVE-2016-9811 CVE-2017-0381 CVE-2017-5837 CVE-2017-5844 CVE-2018-14633 CVE-2018-17182 CVE-2019-1547 CVE-2019-1563 SUSE-SU-2015:0506-1 SUSE-SU-2015:0515-1 SUSE-SU-2018:3158-1 SUSE-SU-2019:2561-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND chrony-3.2-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.232-lp151.2.6 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.232-lp151.2.6 is installed OR java-1_8_0-openjdk-demo-1.8.0.232-lp151.2.6 is installed OR java-1_8_0-openjdk-devel-1.8.0.232-lp151.2.6 is installed OR java-1_8_0-openjdk-headless-1.8.0.232-lp151.2.6 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.232-lp151.2.6 is installed OR java-1_8_0-openjdk-src-1.8.0.232-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information zypper-1.6.166-0.5 is installed OR zypper-log-1.6.166-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information kde4-kgreeter-plugins-4.3.5-0.12.20 is installed OR kdebase4-wallpapers-4.3.5-0.11.20 is installed OR kdebase4-workspace-4.3.5-0.12.20 is installed OR kdebase4-workspace-ksysguardd-4.3.5-0.12.20 is installed OR kdm-4.3.5-0.12.20 is installed OR kwin-4.3.5-0.12.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.540-0.23 is installed OR flash-player-gnome-11.2.202.540-0.23 is installed OR flash-player-kde4-11.2.202.540-0.23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information ecryptfs-utils-103-5 is installed OR ecryptfs-utils-32bit-103-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND logrotate-3.8.7-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gstreamer-0_10-plugins-base-0.10.36-17 is installed OR gstreamer-0_10-plugins-base-32bit-0.10.36-17 is installed OR gstreamer-0_10-plugins-base-lang-0.10.36-17 is installed OR libgstapp-0_10-0-0.10.36-17 is installed OR libgstapp-0_10-0-32bit-0.10.36-17 is installed OR libgstinterfaces-0_10-0-0.10.36-17 is installed OR libgstinterfaces-0_10-0-32bit-0.10.36-17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.22 is installed OR libopenssl1_0_0-1.0.2p-3.22 is installed OR openssl-1_0_0-1.0.2p-3.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR kernel-default-livepatch-4.12.14-25.22 is installed OR kernel-livepatch-4_12_14-25_22-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_6-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information sysvinit-tools-2.88+-94 is installed OR whois-5.1.1-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libopenssl1_0_0-1.0.1i-54.14 is installed OR libopenssl1_0_0-32bit-1.0.1i-54.14 is installed OR libopenssl1_0_0-hmac-1.0.1i-54.14 is installed OR libopenssl1_0_0-hmac-32bit-1.0.1i-54.14 is installed OR openssl-1.0.1i-54.14 is installed OR openssl-doc-1.0.1i-54.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-default-4.4.21-69 is installed OR kernel-default-base-4.4.21-69 is installed OR kernel-default-devel-4.4.21-69 is installed OR kernel-default-man-4.4.21-69 is installed OR kernel-devel-4.4.21-69 is installed OR kernel-macros-4.4.21-69 is installed OR kernel-source-4.4.21-69 is installed OR kernel-syms-4.4.21-69 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython2_7-1_0-2.7.13-28.31 is installed OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed OR python-2.7.13-28.31 is installed OR python-32bit-2.7.13-28.31 is installed OR python-base-2.7.13-28.31 is installed OR python-base-32bit-2.7.13-28.31 is installed OR python-curses-2.7.13-28.31 is installed OR python-demo-2.7.13-28.31 is installed OR python-devel-2.7.13-28.31 is installed OR python-doc-2.7.13-28.31 is installed OR python-doc-pdf-2.7.13-28.31 is installed OR python-gdbm-2.7.13-28.31 is installed OR python-idle-2.7.13-28.31 is installed OR python-tk-2.7.13-28.31 is installed OR python-xml-2.7.13-28.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ceph-common-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libcephfs2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librados2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libradosstriper1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librbd1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librgw2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-cephfs-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rados-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rbd-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rgw-12.2.8+git.1536505967.080f2248ff-2.15 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed
BACK