Oval Definition:oval:org.opensuse.security:def:74407
Revision Date:2020-12-01Version:1
Title:Security update for openssl-1_0_0 (Moderate)
Description:

This update for openssl-1_0_0 fixes the following issues:

OpenSSL Security Advisory [10 September 2019]

CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003) * CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250)

In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291).

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1131291
1150003
1150250
1174628
CVE-2019-1547
CVE-2019-1563
CVE-2020-14344
openSUSE-SU-2019:2269-1
openSUSE-SU-2020:1162-1
Platform(s):openSUSE Leap 15.1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2p-lp151.5.10 is installed
  • OR libopenssl-1_0_0-devel-32bit-1.0.2p-lp151.5.10 is installed
  • OR libopenssl1_0_0-1.0.2p-lp151.5.10 is installed
  • OR libopenssl1_0_0-32bit-1.0.2p-lp151.5.10 is installed
  • OR libopenssl1_0_0-hmac-1.0.2p-lp151.5.10 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2p-lp151.5.10 is installed
  • OR libopenssl1_0_0-steam-1.0.2p-lp151.5.10 is installed
  • OR libopenssl1_0_0-steam-32bit-1.0.2p-lp151.5.10 is installed
  • OR openssl-1_0_0-1.0.2p-lp151.5.10 is installed
  • OR openssl-1_0_0-cavs-1.0.2p-lp151.5.10 is installed
  • OR openssl-1_0_0-doc-1.0.2p-lp151.5.10 is installed
    • BACK