Oval Definition:oval:org.opensuse.security:def:558
Revision Date:2022-07-06Version:1
Title:Security update for openssl-3 (Important)
Description:

This update for openssl-3 fixes the following issues:

- CVE-2022-2068: Fixed more shell code injection issues in c_rehash. (bsc#1200550) - CVE-2022-1292: Properly sanitise shell metacharacters in c_rehash script. (bsc#1199166) - CVE-2022-1343: Fixed incorrect signature verification in OCSP_basic_verify (bsc#1199167). - CVE-2022-2097: Fixed partial missing encryption in AES OCB mode (bsc#1201099). - CVE-2022-1434: Fixed incorrect MAC key used in the RC4-MD5 ciphersuite (bsc#1199168). - CVE-2022-1473: Fixed resource leakage when decoding certificates and keys (bsc#1199169).
Family:unixClass:patch
Status:Reference(s):1185637
1199166
1199167
1199168
1199169
1200550
1201099
CVE-2017-7500
CVE-2017-7500
CVE-2022-1292
CVE-2022-1343
CVE-2022-1434
CVE-2022-1473
CVE-2022-2068
CVE-2022-2097
SUSE-SU-2022:2306-1
Platform(s):openSUSE 13.1
openSUSE Leap 15.4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • libopenssl-3-devel-3.0.1-150400.4.7.1 is installed
  • OR libopenssl-3-devel-32bit-3.0.1-150400.4.7.1 is installed
  • OR libopenssl3-3.0.1-150400.4.7.1 is installed
  • OR libopenssl3-32bit-3.0.1-150400.4.7.1 is installed
  • OR openssl-3-3.0.1-150400.4.7.1 is installed
  • OR openssl-3-doc-3.0.1-150400.4.7.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND fetchmail-6.3.26-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • rpm-4.14.1-10.16.1 is installed
  • OR rpm-32bit-4.14.1-10.16.1 is installed
  • OR rpm-devel-4.14.1-10.16.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • rpm-4.14.1-10.16 is installed
  • OR rpm-32bit-4.14.1-10.16 is installed
  • OR rpm-devel-4.14.1-10.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • djvulibre-3.5.27-3.3 is installed
  • OR libdjvulibre-devel-3.5.27-3.3 is installed
  • OR libdjvulibre21-3.5.27-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • pidgin-plugin-otr-4.0.2-1 is installed
  • OR pidgin-plugin-otr-lang-4.0.2-1 is installed
  • BACK