Oval Definition:oval:org.opensuse.security:def:78568
Revision Date:2016-05-04Version:1
Title:Security update for openssl (Important)
Description:

This update for openssl fixes the following issues:

- CVE-2016-2108: Memory corruption in the ASN.1 encoder (bsc#977617) - CVE-2016-2107: Padding oracle in AES-NI CBC MAC check (bsc#977616) - CVE-2016-2105: EVP_EncodeUpdate overflow (bsc#977614) - CVE-2016-2106: EVP_EncryptUpdate overflow (bsc#977615) - CVE-2016-2109: ASN.1 BIO excessive memory allocation (bsc#976942) - bsc#976943: Buffer overrun in ASN1_parse - bsc#977621: Preserve negotiated digests for SNI (bsc#977621) - bsc#958501: Fix openssl enc -non-fips-allow option in FIPS mode (bsc#958501)
Family:unixClass:patch
Status:Reference(s):958501
976942
976943
977614
977615
977616
977617
977621
CVE-2016-2105
CVE-2016-2106
CVE-2016-2107
CVE-2016-2108
CVE-2016-2109
SUSE-SU-2016:1233-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libopenssl1_0_0-1.0.1i-47.1 is installed
  • OR libopenssl1_0_0-32bit-1.0.1i-47.1 is installed
  • OR openssl-1.0.1i-47.1 is installed
    • BACK