Description: |
This update for openssl-1_0_0 fixes the following issues:
OpenSSL Security Advisory [10 September 2019]
CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003) * CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250)
In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291).
|