Oval Definition:oval:org.opensuse.security:def:60485
Revision Date:2021-03-25Version:1
Title:Security update for openssl-1_1 (Important)
Description:

This update for openssl-1_1 fixes the following security issue:

CVE-2021-3449: An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension but includes a signature_algorithms_cert extension, then a NULL pointer dereference will result, leading to a crash and a denial of service attack. OpenSSL TLS clients are not impacted by this issue. [bsc#1183852]
Family:unixClass:patch
Status:Reference(s):1005778
1005780
1005781
1012382
1019695
1019696
1022604
1040519
1048688
1053043
1055857
1059893
1063638
1065600
1066223
1077718
1085535
1085539
1085687
1090888
1094555
1099658
1100132
1106110
1106284
1106929
1108293
1108382
1108838
1109137
1110785
1110946
1111180
1111188
1112063
1112178
1114157
1114169
1115904
1116803
1117562
1119086
1120642
1120843
1120885
1120902
1121263
1122776
1125357
1125580
1126040
1126356
1126961
1127155
1128052
1129138
1129734
1129770
1130972
1131107
1131335
1131336
1131488
1131543
1131565
1131645
1132212
1132374
1132390
1132472
1132852
1133140
1133188
1133190
1133191
1133738
1133817
1133874
1134160
1134162
1134338
1134395
1134537
1134564
1134565
1134566
1134651
1134760
1134806
1134813
1134848
1135013
1135014
1135015
1135100
1135120
1135281
1135603
1135642
1135661
1135773
1135878
1136424
1136438
1136446
1136448
1136449
1136451
1136452
1136455
1136458
1136539
1136573
1136575
1136586
1136590
1136598
1136623
1136810
1136889
1136922
1136935
1136990
1137004
1137142
1137162
1137194
1137586
1137739
1137749
1137752
1137915
1138291
1138293
1138374
1138681
1139751
1140575
1140577
1145498
1146206
1148426
1148987
1149110
1149535
1151206
1157763
1159819
1163985
1165402
1165643
1166290
1167068
1167240
1167373
1168669
1169659
1169746
1170313
1170423
1170558
1170908
1171186
1171363
1171978
1173022
1173304
1183852
144694
682920
843419
CVE-2008-1686
CVE-2013-4343
CVE-2014-4040
CVE-2014-9638
CVE-2014-9639
CVE-2014-9640
CVE-2015-6749
CVE-2016-6328
CVE-2017-5637
CVE-2017-7467
CVE-2017-7544
CVE-2018-10851
CVE-2018-14626
CVE-2018-17972
CVE-2018-20836
CVE-2018-5146
CVE-2018-7191
CVE-2019-0201
CVE-2019-10126
CVE-2019-10638
CVE-2019-10639
CVE-2019-11190
CVE-2019-11477
CVE-2019-11478
CVE-2019-11479
CVE-2019-11486
CVE-2019-11487
CVE-2019-11596
CVE-2019-11599
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
CVE-2019-12380
CVE-2019-12382
CVE-2019-12456
CVE-2019-12519
CVE-2019-12520
CVE-2019-12521
CVE-2019-12524
CVE-2019-12614
CVE-2019-12818
CVE-2019-12819
CVE-2019-13627
CVE-2019-15026
CVE-2019-15961
CVE-2019-17006
CVE-2019-18860
CVE-2019-3846
CVE-2019-3871
CVE-2019-5489
CVE-2020-11945
CVE-2020-12108
CVE-2020-12137
CVE-2020-12387
CVE-2020-12388
CVE-2020-12389
CVE-2020-12392
CVE-2020-12393
CVE-2020-12395
CVE-2020-12399
CVE-2020-12402
CVE-2020-14059
CVE-2020-1720
CVE-2020-5247
CVE-2020-6831
CVE-2020-9543
CVE-2021-3449
SUSE-SU-2018:0193-1
SUSE-SU-2018:0784-1
SUSE-SU-2019:1527-1
SUSE-SU-2019:1852-1
SUSE-SU-2019:2510-1
SUSE-SU-2020:0586-1
SUSE-SU-2020:1066-1
SUSE-SU-2020:1301-1
SUSE-SU-2020:1803-1
SUSE-SU-2020:1839-1
SUSE-SU-2021:0954-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND ucode-intel-20191112a-lp150.2.33 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • kernel-debug-4.12.14-lp151.28.7 is installed
  • OR kernel-debug-base-4.12.14-lp151.28.7 is installed
  • OR kernel-debug-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-default-4.12.14-lp151.28.7 is installed
  • OR kernel-default-base-4.12.14-lp151.28.7 is installed
  • OR kernel-default-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-docs-4.12.14-lp151.28.7 is installed
  • OR kernel-docs-html-4.12.14-lp151.28.7 is installed
  • OR kernel-kvmsmall-4.12.14-lp151.28.7 is installed
  • OR kernel-kvmsmall-base-4.12.14-lp151.28.7 is installed
  • OR kernel-kvmsmall-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-macros-4.12.14-lp151.28.7 is installed
  • OR kernel-obs-build-4.12.14-lp151.28.7 is installed
  • OR kernel-obs-qa-4.12.14-lp151.28.7 is installed
  • OR kernel-source-4.12.14-lp151.28.7 is installed
  • OR kernel-source-vanilla-4.12.14-lp151.28.7 is installed
  • OR kernel-syms-4.12.14-lp151.28.7 is installed
  • OR kernel-vanilla-4.12.14-lp151.28.7 is installed
  • OR kernel-vanilla-base-4.12.14-lp151.28.7 is installed
  • OR kernel-vanilla-devel-4.12.14-lp151.28.7 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • tomcat-9.0.36-lp152.2.3 is installed
  • OR tomcat-admin-webapps-9.0.36-lp152.2.3 is installed
  • OR tomcat-docs-webapp-9.0.36-lp152.2.3 is installed
  • OR tomcat-el-3_0-api-9.0.36-lp152.2.3 is installed
  • OR tomcat-embed-9.0.36-lp152.2.3 is installed
  • OR tomcat-javadoc-9.0.36-lp152.2.3 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-lp152.2.3 is installed
  • OR tomcat-jsvc-9.0.36-lp152.2.3 is installed
  • OR tomcat-lib-9.0.36-lp152.2.3 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-lp152.2.3 is installed
  • OR tomcat-webapps-9.0.36-lp152.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND minicom-2.7-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND squid-3.5.21-26.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND clamav-0.100.3-33.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND mailman-2.1.17-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • xen-4.9.2_10-3.41 is installed
  • OR xen-doc-html-4.9.2_10-3.41 is installed
  • OR xen-libs-4.9.2_10-3.41 is installed
  • OR xen-libs-32bit-4.9.2_10-3.41 is installed
  • OR xen-tools-4.9.2_10-3.41 is installed
  • OR xen-tools-domU-4.9.2_10-3.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND gd-2.1.0-24.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • MozillaFirefox-78.2.0-112.19 is installed
  • OR MozillaFirefox-devel-78.2.0-112.19 is installed
  • OR MozillaFirefox-translations-common-78.2.0-112.19 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • libopenssl1_1-1.1.1d-2.33.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.33.1 is installed
  • OR openssl-1_1-1.1.1d-2.33.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • libopenssl1_1-1.1.1d-2.33.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-2.33.1 is installed
  • OR openssl-1_1-1.1.1d-2.33.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • kernel-default-4.4.180-94.100 is installed
  • OR kernel-default-base-4.4.180-94.100 is installed
  • OR kernel-default-devel-4.4.180-94.100 is installed
  • OR kernel-devel-4.4.180-94.100 is installed
  • OR kernel-macros-4.4.180-94.100 is installed
  • OR kernel-source-4.4.180-94.100 is installed
  • OR kernel-syms-4.4.180-94.100 is installed
  • OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • cobbler-2.6.6-49.26 is installed
  • OR golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • crowbar-core-5.0+git.1585575551.16781d00d-3.38 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1585575551.16781d00d-3.38 is installed
  • OR crowbar-ha-5.0+git.1585316176.344190f-3.32 is installed
  • OR crowbar-openstack-5.0+git.1585304226.2164b7895-4.37 is installed
  • OR documentation-suse-openstack-cloud-deployment-8.20200319-1.23 is installed
  • OR documentation-suse-openstack-cloud-supplement-8.20200319-1.23 is installed
  • OR documentation-suse-openstack-cloud-upstream-admin-8.20200319-1.23 is installed
  • OR documentation-suse-openstack-cloud-upstream-user-8.20200319-1.23 is installed
  • OR memcached-1.5.17-3.3 is installed
  • OR openstack-manila-5.1.1~dev5-3.26 is installed
  • OR openstack-manila-api-5.1.1~dev5-3.26 is installed
  • OR openstack-manila-data-5.1.1~dev5-3.26 is installed
  • OR openstack-manila-doc-5.1.1~dev5-3.26 is installed
  • OR openstack-manila-scheduler-5.1.1~dev5-3.26 is installed
  • OR openstack-manila-share-5.1.1~dev5-3.26 is installed
  • OR openstack-neutron-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-dhcp-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-doc-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-ha-tool-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-l3-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-macvtap-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-metadata-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-metering-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.9~dev63-3.30 is installed
  • OR openstack-neutron-server-11.0.9~dev63-3.30 is installed
  • OR openstack-nova-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-api-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-cells-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-compute-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-conductor-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-console-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-consoleauth-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-doc-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-novncproxy-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-placement-api-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-scheduler-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-serialproxy-16.1.9~dev61-3.35 is installed
  • OR openstack-nova-vncproxy-16.1.9~dev61-3.35 is installed
  • OR python-amqp-2.4.2-3.9 is installed
  • OR python-manila-5.1.1~dev5-3.26 is installed
  • OR python-neutron-11.0.9~dev63-3.30 is installed
  • OR python-nova-16.1.9~dev61-3.35 is installed
  • OR ruby2.1-rubygem-puma-2.16.0-3.6 is installed
  • OR rubygem-puma-2.16.0-3.6 is installed
  • OR zookeeper-3.4.10-3.6 is installed
  • OR zookeeper-server-3.4.10-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.23-3.9 is installed
    • BACK