Oval Definition:oval:org.opensuse.security:def:74850
Revision Date:2020-12-01Version:1
Title:Security update for openssl-1_1 (Moderate)
Description:

This update for openssl-1_1 fixes the following issues:

Security issue fixed:

- CVE-2019-1551: Fixed an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli (bsc#1158809).

Various FIPS related improvements were done:

- FIPS: Backport SSH KDF to openssl (jsc#SLE-8789, bsc#1157775). - Port FIPS patches from SLE-12 (bsc#1158101). - Use SHA-2 in the RSA pairwise consistency check (bsc#1155346).

This update was imported from the SUSE:SLE-15-SP1:Update update project.
Family:unixClass:patch
Status:Reference(s):1155346
1157775
1158101
1158809
CVE-2019-1551
openSUSE-SU-2019:2154-1
openSUSE-SU-2020:0062-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2 NonFree
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.0i-lp151.8.6 is installed
  • OR libopenssl-1_1-devel-32bit-1.1.0i-lp151.8.6 is installed
  • OR libopenssl1_1-1.1.0i-lp151.8.6 is installed
  • OR libopenssl1_1-32bit-1.1.0i-lp151.8.6 is installed
  • OR libopenssl1_1-hmac-1.1.0i-lp151.8.6 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.0i-lp151.8.6 is installed
  • OR openssl-1_1-1.1.0i-lp151.8.6 is installed
  • OR openssl-1_1-doc-1.1.0i-lp151.8.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 NonFree is installed
  • AND opera-63.0.3368.88-lp152.2.3 is installed
    • BACK