Oval Definition:	oval:org.opensuse.security:def:97347
Revision Date: 2021-03-25 Version: 1 Title: Security update for openssl-1_1 (Important) Description: This update for openssl-1_1 fixes the security issue: CVE-2021-3449: An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension but includes a signature_algorithms_cert extension, then a NULL pointer dereference will result, leading to a crash and a denial of service attack. OpenSSL TLS clients are not impacted by this issue. [bsc#1183852] Family: unix Class: patch Status: Reference(s): 1183852 CVE-2021-3449 SUSE-SU-2021:0955-1 Platform(s): openSUSE Leap 15.3 SLE Imports Product(s): Definition Synopsis openSUSE Leap 15.3 SLE Imports is installed AND Package Information libopenssl-1_1-devel-1.1.1d-11.20.1 is installed OR libopenssl-1_1-devel-32bit-1.1.1d-11.20.1 is installed OR libopenssl-1_1-devel-64bit-1.1.1d-11.20.1 is installed OR libopenssl1_1-1.1.1d-11.20.1 is installed OR libopenssl1_1-32bit-1.1.1d-11.20.1 is installed OR libopenssl1_1-64bit-1.1.1d-11.20.1 is installed OR libopenssl1_1-hmac-1.1.1d-11.20.1 is installed OR libopenssl1_1-hmac-32bit-1.1.1d-11.20.1 is installed OR libopenssl1_1-hmac-64bit-1.1.1d-11.20.1 is installed OR openssl-1_1-1.1.1d-11.20.1 is installed OR openssl-1_1-doc-1.1.1d-11.20.1 is installed
BACK