Oval Definition:	oval:org.opensuse.security:def:56253
Revision Date: 2020-12-01 Version: 1 Title: Security update for compat-openssl098 (Moderate) Description: This update for compat-openssl098 fixes the following issues contained in the OpenSSL Security Advisory [26 Jan 2017] (bsc#1021641) Security issues fixed: - CVE-2016-7056: A local ECSDA P-256 timing attack that might have allowed key recovery was fixed (bsc#1019334) - CVE-2016-8610: A remote denial of service in SSL alert handling was fixed (bsc#1005878) - degrade 3DES to MEDIUM in SSL2 (bsc#1001912) - CVE-2016-2108: Added a missing commit for CVE-2016-2108, fixing the negative zero handling in the ASN.1 decoder (bsc#1004499) Bugs fixed: - fix crash in openssl speed (bsc#1000677) - don't attempt session resumption if no ticket is present and session ID length is zero (bsc#984663) Family: unix Class: patch Status: Reference(s): 1000677 1001912 1004499 1005878 1014136 1019334 1021641 1026236 1027519 1031460 1034845 1036470 1037243 1039357 1040043 1042160 1042863 1042882 1042893 1042915 1042923 1042924 1042931 1042938 1043074 1043297 1053153 1069708 1076017 1083488 1085114 1085447 1090036 1124211 1141493 939460 945842 952051 952151 953831 954002 954980 955382 962765 964468 966220 968771 984663 CVE-2010-0624 CVE-2010-2547 CVE-2011-0523 CVE-2011-0524 CVE-2011-2709 CVE-2013-4351 CVE-2013-4402 CVE-2013-6435 CVE-2014-0011 CVE-2014-4617 CVE-2014-5461 CVE-2014-8118 CVE-2014-8240 CVE-2014-9112 CVE-2015-0255 CVE-2015-5276 CVE-2015-7981 CVE-2015-8126 CVE-2016-2108 CVE-2016-7056 CVE-2016-8610 CVE-2017-1000366 CVE-2017-10661 CVE-2017-10911 CVE-2017-10912 CVE-2017-10913 CVE-2017-10914 CVE-2017-10915 CVE-2017-10916 CVE-2017-10917 CVE-2017-10918 CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 CVE-2017-12652 CVE-2017-13166 CVE-2017-16939 CVE-2017-8112 CVE-2017-8309 CVE-2017-8905 CVE-2017-9330 CVE-2017-9374 CVE-2017-9503 CVE-2018-1000004 CVE-2018-1000199 CVE-2018-1068 CVE-2018-7566 CVE-2019-7317 SUSE-SU-2015:2017-1 SUSE-SU-2016:0963-1 SUSE-SU-2017:0605-1 SUSE-SU-2017:1619-1 SUSE-SU-2017:1812-1 SUSE-SU-2017:3323-1 SUSE-SU-2018:1018-1 SUSE-SU-2018:1551-1 SUSE-SU-2019:3060-2 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnome-keyring-3.20.1-lp150.2 is installed OR gnome-keyring-lang-3.20.1-lp150.2 is installed OR gnome-keyring-pam-3.20.1-lp150.2 is installed OR libgck-modules-gnome-keyring-3.20.1-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information evolution-3.26.6-lp151.4.3 is installed OR evolution-devel-3.26.6-lp151.4.3 is installed OR evolution-lang-3.26.6-lp151.4.3 is installed OR evolution-plugin-bogofilter-3.26.6-lp151.4.3 is installed OR evolution-plugin-pst-import-3.26.6-lp151.4.3 is installed OR evolution-plugin-spamassassin-3.26.6-lp151.4.3 is installed OR glade-catalog-evolution-3.26.6-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libpng12-0-1.2.31-5.35 is installed OR libpng12-0-32bit-1.2.31-5.35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information compat-openssl098-0.9.8j-105 is installed OR libopenssl0_9_8-0.9.8j-105 is installed OR libopenssl0_9_8-32bit-0.9.8j-105 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-11-2 is installed OR kgraft-patch-3_12_67-60_64_24-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_11-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXvnc1-1.6.0-12 is installed OR tigervnc-1.6.0-12 is installed OR xorg-x11-Xvnc-1.6.0-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND clamav-0.100.1-33.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libvte9-0.28.2-19 is installed OR python-vte-0.28.2-19 is installed OR vte2-lang-0.28.2-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND atftp-0.7.0-160.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information xen-4.5.5_12-22.18 is installed OR xen-doc-html-4.5.5_12-22.18 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed OR xen-libs-4.5.5_12-22.18 is installed OR xen-libs-32bit-4.5.5_12-22.18 is installed OR xen-tools-4.5.5_12-22.18 is installed OR xen-tools-domU-4.5.5_12-22.18 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bind-9.9.9P1-63.17 is installed OR bind-chrootenv-9.9.9P1-63.17 is installed OR bind-doc-9.9.9P1-63.17 is installed OR bind-libs-9.9.9P1-63.17 is installed OR bind-libs-32bit-9.9.9P1-63.17 is installed OR bind-utils-9.9.9P1-63.17 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.5 is installed
BACK