SUSE-SU-2018:2928-1 -- SLES openssl, libopensslID: oval:org.secpod.oval:def:89002322 | Date: (C)2021-02-25 (M)2024-01-29 |
Class: PATCH | Family: unix |
This update for openssl fixes the following issues: These security issues were fixed: - Prevent Oneamp;Done side-channel attack on RSA that allowed physically near attackers to use EM emanations to recover information - CVE-2018-0737: The RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could have recovered the private key These non-security issues were fixed: - Add openssl Provide so the packages that require the openssl binary can require this instead of the new openssl meta package - Fixed path to the engines which are under /lib64 on SLE-12
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
openssl |
libopenssl |