Oval Definition:	oval:org.opensuse.security:def:56879
Revision Date: 2020-12-01 Version: 1 Title: Security update for openssl (Moderate) Description: This update for openssl fixes the following issues: Security issues fixed: - The 9 Lives of Bleichenbacher's CAT: Cache Attacks on TLS Implementations (bsc#1117951) - CVE-2019-1559: Fixed OpenSSL 0-byte Record Padding Oracle which under certain circumstances a TLS server can be forced to respond differently to a client and lead to the decryption of the data (bsc#1127080). Other issues addressed: - Fixed IV handling in SHAEXT paths: aes/asm/aesni-sha*-x86_64.pl (bsc#1113975). - Set TLS version to 0 in msg_callback for record messages to avoid confusing applications (bsc#1100078). Family: unix Class: patch Status: Reference(s): 1000106 1000201 1003030 1003032 1003870 1004016 1005004 1005005 1005070 1005072 1005076 1007157 1007160 1009100 1009103 1009104 1009107 1009108 1009109 1009111 1009434 1011377 1011390 1011395 1011398 1011404 1011406 1011411 1011417 1011652 1012651 1014298 1014300 1016259 1016340 1022610 1027575 1029696 1031529 1038564 1042892 1046191 1050549 1050751 1051510 1052904 1053043 1055117 1055121 1055186 1061840 1063671 1064392 1065600 1065729 1066471 1066472 1069708 1070872 1071471 1082555 1083647 1085535 1085536 1088804 1094244 1097583 1097584 1097585 1097586 1097587 1097588 1100078 1100132 1103186 1103259 1104668 1108193 1108937 1111331 1112128 1112178 1113399 1113722 1113975 1114279 1114542 1114638 1117951 1119086 1119680 1120318 1120902 1122767 1123105 1125330 1125342 1126221 1126356 1126704 1126740 1127080 1127175 1127371 1127372 1127374 1127378 1127445 1127987 1128415 1128544 1129273 1129276 1129770 1129821 1130130 1130154 1130195 1130262 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1130579 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131290 1131326 1131335 1131336 1131416 1131427 1131442 1131467 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132681 1132726 1132828 1132943 1133005 1133094 1133095 1133115 1133149 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1170603 943216 956365 979441 980391 981252 986566 988028 989980 992038 992606 998677 CVE-2013-2186 CVE-2013-4282 CVE-2014-0050 CVE-2015-1283 CVE-2015-2304 CVE-2015-3247 CVE-2015-5219 CVE-2015-5260 CVE-2015-5261 CVE-2016-0705 CVE-2016-0718 CVE-2016-0749 CVE-2016-10013 CVE-2016-10024 CVE-2016-10025 CVE-2016-2150 CVE-2016-5418 CVE-2016-5844 CVE-2016-6250 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-7777 CVE-2016-7908 CVE-2016-7909 CVE-2016-7995 CVE-2016-8576 CVE-2016-8667 CVE-2016-8669 CVE-2016-8687 CVE-2016-8688 CVE-2016-8689 CVE-2016-8909 CVE-2016-8910 CVE-2016-9310 CVE-2016-9311 CVE-2016-9377 CVE-2016-9378 CVE-2016-9379 CVE-2016-9380 CVE-2016-9381 CVE-2016-9382 CVE-2016-9383 CVE-2016-9385 CVE-2016-9386 CVE-2016-9637 CVE-2016-9932 CVE-2017-13080 CVE-2017-15649 CVE-2017-15868 CVE-2017-16939 CVE-2017-2636 CVE-2017-3732 CVE-2017-3736 CVE-2017-6507 CVE-2017-7533 CVE-2017-7645 CVE-2017-8890 CVE-2017-9242 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12539 CVE-2018-1517 CVE-2018-1656 CVE-2018-16880 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-2940 CVE-2018-2952 CVE-2018-2964 CVE-2018-2973 CVE-2019-11091 CVE-2019-1559 CVE-2019-3882 CVE-2019-5785 CVE-2019-9003 CVE-2019-9500 CVE-2019-9503 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-12268 SUSE-SU-2016:1508-1 SUSE-SU-2016:2911-1 SUSE-SU-2016:3083-1 SUSE-SU-2016:3195-1 SUSE-SU-2016:3208-1 SUSE-SU-2017:1151-1 SUSE-SU-2017:2060-1 SUSE-SU-2017:3131-1 SUSE-SU-2018:0268-1 SUSE-SU-2018:2839-1 SUSE-SU-2019:0803-1 SUSE-SU-2019:0852-1 SUSE-SU-2019:1241-1 SUSE-SU-2020:1212-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND hplip-hpijs-3.17.9-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.80-lp151.2.6 is installed OR chromium-75.0.3770.80-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libopenssl-devel-1.0.2j-60.49 is installed OR libopenssl1_0_0-1.0.2j-60.49 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.49 is installed OR openssl-1.0.2j-60.49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information kernel-default-4.12.14-95.16 is installed OR kernel-default-devel-4.12.14-95.16 is installed OR kernel-default-extra-4.12.14-95.16 is installed OR kernel-devel-4.12.14-95.16 is installed OR kernel-macros-4.12.14-95.16 is installed OR kernel-source-4.12.14-95.16 is installed OR kernel-syms-4.12.14-95.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information xen-4.5.5_02-22.3 is installed OR xen-doc-html-4.5.5_02-22.3 is installed OR xen-kmp-default-4.5.5_02_k3.12.67_60.64.18-22.3 is installed OR xen-libs-4.5.5_02-22.3 is installed OR xen-libs-32bit-4.5.5_02-22.3 is installed OR xen-tools-4.5.5_02-22.3 is installed OR xen-tools-domU-4.5.5_02-22.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_62-60_62-default-10-2 is installed OR kgraft-patch-3_12_62-60_62-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_7-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information jakarta-commons-fileupload-1.1.1-120 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-120 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.27 is installed OR apache2-doc-2.4.23-29.27 is installed OR apache2-example-pages-2.4.23-29.27 is installed OR apache2-prefork-2.4.23-29.27 is installed OR apache2-utils-2.4.23-29.27 is installed OR apache2-worker-2.4.23-29.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsqlite3-0-3.8.10.2-9.15 is installed OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed OR sqlite3-3.8.10.2-9.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libexif-0.6.21-8.6 is installed OR libexif12-0.6.21-8.6 is installed OR libexif12-32bit-0.6.21-8.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libdcerpc-binding0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libdcerpc-binding0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libdcerpc0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libdcerpc0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-krb5pac0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-krb5pac0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-nbt0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-nbt0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-standard0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-standard0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libnetapi0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libnetapi0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-credentials0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-credentials0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-errors0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-errors0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-hostconfig0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-hostconfig0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-passdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-passdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbconf0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbconf0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbldap0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbldap0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libtevent-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libtevent-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libwbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libwbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-client-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-client-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-doc-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-libs-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-libs-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-winbind-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-winbind-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information mozilla-nspr-4.13.1-18 is installed OR mozilla-nspr-32bit-4.13.1-18 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.1-11.37 is installed
BACK