Oval Definition:
oval:org.opensuse.security:def:65824
Revision Date
:
2020-12-01
Version
:
1
Title
:
Security update for openssl-1_0_0 (Moderate)
Description
:
This update for openssl-1_0_0 fixes the following issues:
OpenSSL Security Advisory [10 September 2019]
CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003) * CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250)
In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1103203
1131291
1150003
1150250
1160467
1160468
CVE-2019-14896
CVE-2019-14897
CVE-2019-1547
CVE-2019-1563
SUSE-SU-2019:2561-1
Platform(s)
:
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
AND
Package Information
libopenssl-1_0_0-devel-1.0.2p-3.22 is installed
OR
libopenssl1_0_0-1.0.2p-3.22 is installed
OR
openssl-1_0_0-1.0.2p-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND
Package Information
kernel-livepatch-4_12_14-197_15-default-5-2 is installed
OR
kernel-livepatch-SLE15-SP1_Update_4-5-2 is installed
BACK