Oval Definition:oval:org.opensuse.security:def:55540
Revision Date:2023-04-20Version:1
Title:Security update for openssl-ibmca (Moderate) (in QA)
Description:

This update for openssl-ibmca fixes the following issues:

Upgraded openssl-ibmca to version 2.4.0 (bsc#1210058)

- Provider: Adjustments for OpenSSL versions 3.1 and 3.2 - Provider: Support RSA blinding - Provider: Constant-time fixes for RSA PKCS#1 v1.5 and OAEP padding - Provider: Support 'implicit rejection' option for RSA PKCS#1 v1.5 padding - Provider: Adjustments in OpenSSL config generator and example configs - Engine: EC: Cache ICA key in EC_KEY object (performance improvement)



- FIPS 140-3: Correct engine handling so only the ciphers selected in the config file are activated (bsc#1210359)



This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1001459
1012985
1013712
1020427
1021741
1023287
1025109
1025311
1027149
1028184
1028217
1028656
1030531
1030552
1030624
1031515
1032075
1033960
1034405
1034866
1034908
1035406
1035531
1035738
1035829
1035950
1036211
1037182
1037183
1037242
1037334
1037336
1037994
1038544
1038564
1038879
1038883
1038981
1038982
1039348
1039354
1039456
1039495
1039721
1039864
1039882
1039883
1039885
1040069
1041160
1041429
1041431
1041830
1042159
1042696
1042800
1042801
1042832
1042863
1043073
1043296
1043484
1043607
1044125
1045035
1045060
1045062
1045065
1045327
1045487
1045922
1046107
1046636
1047674
1048275
1048576
1048788
1048902
1049381
1049645
1049882
1053148
1053152
1053317
1054724
1056334
1056588
1056982
1057179
1057378
1057585
1058410
1058507
1058524
1059863
1061041
1062069
1062471
1062520
1063122
1063667
1064388
1118900
1122293
1122299
1125721
1126455
1129622
1130675
1131955
1132728
1132729
1132732
1134297
1140095
1140101
1162202
1162675
1210058
1210359
815451
821670
856774
860250
863764
878240
899712
907453
912889
922855
922871
933922
935119
939246
943816
950114
958324
960402
963937
986924
993099
994364
994418
994605
CVE-2010-2529
CVE-2013-2002
CVE-2013-2005
CVE-2013-6393
CVE-2014-2525
CVE-2014-9116
CVE-2014-9130
CVE-2015-3218
CVE-2015-3255
CVE-2015-3256
CVE-2015-4625
CVE-2015-5041
CVE-2015-7575
CVE-2015-8045
CVE-2015-8047
CVE-2015-8048
CVE-2015-8049
CVE-2015-8050
CVE-2015-8055
CVE-2015-8056
CVE-2015-8057
CVE-2015-8058
CVE-2015-8059
CVE-2015-8060
CVE-2015-8061
CVE-2015-8062
CVE-2015-8063
CVE-2015-8064
CVE-2015-8065
CVE-2015-8066
CVE-2015-8067
CVE-2015-8068
CVE-2015-8069
CVE-2015-8070
CVE-2015-8071
CVE-2015-8126
CVE-2015-8401
CVE-2015-8402
CVE-2015-8403
CVE-2015-8404
CVE-2015-8405
CVE-2015-8406
CVE-2015-8407
CVE-2015-8408
CVE-2015-8409
CVE-2015-8410
CVE-2015-8411
CVE-2015-8412
CVE-2015-8413
CVE-2015-8414
CVE-2015-8415
CVE-2015-8416
CVE-2015-8417
CVE-2015-8418
CVE-2015-8419
CVE-2015-8420
CVE-2015-8421
CVE-2015-8422
CVE-2015-8423
CVE-2015-8424
CVE-2015-8425
CVE-2015-8426
CVE-2015-8427
CVE-2015-8428
CVE-2015-8429
CVE-2015-8430
CVE-2015-8431
CVE-2015-8432
CVE-2015-8433
CVE-2015-8434
CVE-2015-8435
CVE-2015-8436
CVE-2015-8437
CVE-2015-8438
CVE-2015-8439
CVE-2015-8440
CVE-2015-8441
CVE-2015-8442
CVE-2015-8443
CVE-2015-8444
CVE-2015-8445
CVE-2015-8446
CVE-2015-8447
CVE-2015-8448
CVE-2015-8449
CVE-2015-8450
CVE-2015-8451
CVE-2015-8452
CVE-2015-8453
CVE-2015-8454
CVE-2015-8455
CVE-2015-8472
CVE-2016-0402
CVE-2016-0448
CVE-2016-0466
CVE-2016-0475
CVE-2016-0483
CVE-2016-0494
CVE-2016-6834
CVE-2016-6835
CVE-2016-9602
CVE-2016-9603
CVE-2016-9798
CVE-2017-1000363
CVE-2017-1000365
CVE-2017-1000380
CVE-2017-10661
CVE-2017-10664
CVE-2017-10806
CVE-2017-10911
CVE-2017-11176
CVE-2017-11334
CVE-2017-11434
CVE-2017-12153
CVE-2017-12154
CVE-2017-12762
CVE-2017-12809
CVE-2017-13080
CVE-2017-13672
CVE-2017-14051
CVE-2017-14106
CVE-2017-14140
CVE-2017-14167
CVE-2017-14867
CVE-2017-15038
CVE-2017-15265
CVE-2017-15274
CVE-2017-15289
CVE-2017-15649
CVE-2017-3167
CVE-2017-3169
CVE-2017-5579
CVE-2017-5973
CVE-2017-5987
CVE-2017-6505
CVE-2017-7377
CVE-2017-7471
CVE-2017-7482
CVE-2017-7487
CVE-2017-7493
CVE-2017-7518
CVE-2017-7541
CVE-2017-7542
CVE-2017-7679
CVE-2017-7718
CVE-2017-7889
CVE-2017-7980
CVE-2017-8086
CVE-2017-8112
CVE-2017-8309
CVE-2017-8379
CVE-2017-8380
CVE-2017-8831
CVE-2017-8890
CVE-2017-8924
CVE-2017-8925
CVE-2017-9074
CVE-2017-9075
CVE-2017-9076
CVE-2017-9077
CVE-2017-9242
CVE-2017-9330
CVE-2017-9373
CVE-2017-9374
CVE-2017-9375
CVE-2017-9503
CVE-2017-9788
CVE-2018-11212
CVE-2018-20815
CVE-2019-13117
CVE-2019-13118
CVE-2019-18634
CVE-2019-2422
CVE-2019-2426
CVE-2019-2602
CVE-2019-2684
CVE-2019-2698
CVE-2019-3812
CVE-2019-8934
CVE-2019-9824
SUSE-SU-2015:1838-1
SUSE-SU-2015:2236-1
SUSE-SU-2016:0390-1
SUSE-SU-2017:2449-1
SUSE-SU-2017:2747-1
SUSE-SU-2017:2908-1
SUSE-SU-2017:2946-1
SUSE-SU-2019:1392-1
SUSE-SU-2019:1867-1
SUSE-SU-2019:2915-1
SUSE-SU-2020:0406-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Micro 5.4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND binutils-2.29.1-lp150.4 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-75.0.3770.90-2 is installed
  • OR chromium-75.0.3770.90-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • xorg-x11-libXt-7.4-1.19 is installed
  • OR xorg-x11-libXt-32bit-7.4-1.19 is installed
  • OR xorg-x11-libXt-devel-7.4-1.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.554-0.29 is installed
  • OR flash-player-gnome-11.2.202.554-0.29 is installed
  • OR flash-player-kde4-11.2.202.554-0.29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND mutt-1.5.21-49 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • qemu-2.9.1-6.31 is installed
  • OR qemu-block-curl-2.9.1-6.31 is installed
  • OR qemu-ipxe-1.0.0+-6.31 is installed
  • OR qemu-kvm-2.9.1-6.31 is installed
  • OR qemu-seabios-1.10.2-6.31 is installed
  • OR qemu-sgabios-8-6.31 is installed
  • OR qemu-tools-2.9.1-6.31 is installed
  • OR qemu-vgabios-1.10.2-6.31 is installed
  • OR qemu-x86-2.9.1-6.31 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.221-43.22 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.4 is installed
  • AND openssl-ibmca-2.4.0-150400.4.8.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND iputils-s20121221-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • git-2.12.3-27.9 is installed
  • OR git-core-2.12.3-27.9 is installed
  • OR git-doc-2.12.3-27.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXvnc1-1.6.0-12 is installed
  • OR tigervnc-1.6.0-12 is installed
  • OR xorg-x11-Xvnc-1.6.0-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND mutt-1.10.1-55.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
  • OR webkit2gtk3-devel-2.24.4-2.47 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_59-92_24-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_9-11-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libX11-6-1.6.2-11 is installed
  • OR libX11-6-32bit-1.6.2-11 is installed
  • OR libX11-data-1.6.2-11 is installed
  • OR libX11-xcb1-1.6.2-11 is installed
  • OR libX11-xcb1-32bit-1.6.2-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gnutls-3.3.27-3.3 is installed
  • OR libgnutls-openssl27-3.3.27-3.3 is installed
  • OR libgnutls28-3.3.27-3.3 is installed
  • OR libgnutls28-32bit-3.3.27-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ecryptfs-utils-103-8.3 is installed
  • OR ecryptfs-utils-32bit-103-8.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • apache2-2.4.16-20.10 is installed
  • OR apache2-doc-2.4.16-20.10 is installed
  • OR apache2-example-pages-2.4.16-20.10 is installed
  • OR apache2-prefork-2.4.16-20.10 is installed
  • OR apache2-utils-2.4.16-20.10 is installed
  • OR apache2-worker-2.4.16-20.10 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-default-4.4.121-92.92 is installed
  • OR kernel-default-base-4.4.121-92.92 is installed
  • OR kernel-default-devel-4.4.121-92.92 is installed
  • OR kernel-default-man-4.4.121-92.92 is installed
  • OR kernel-devel-4.4.121-92.92 is installed
  • OR kernel-macros-4.4.121-92.92 is installed
  • OR kernel-source-4.4.121-92.92 is installed
  • OR kernel-syms-4.4.121-92.92 is installed
  • OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
  • OR lttng-modules-2.7.1-9.4 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libXvnc1-1.6.0-18.28 is installed
  • OR tigervnc-1.6.0-18.28 is installed
  • OR xorg-x11-Xvnc-1.6.0-18.28 is installed
  • BACK