SUSE-SU-2016:1290-1 -- SLES openssl, libopenssl0_9_8ID: oval:org.secpod.oval:def:89045365 | Date: (C)2021-08-03 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for openssl fixes the following issues: Security issues fixed: - CVE-2016-2108: Memory corruption in the ASN.1 encoder - CVE-2016-2105: EVP_EncodeUpdate overflow - CVE-2016-2106: EVP_EncryptUpdate overflow - CVE-2016-2109: ASN.1 BIO excessive memory allocation - CVE-2016-0702: Side channel attack on modular exponentiation CacheBleed Bugs fixed: - fate#320304: build 32bit devel package - bsc#976943: Fix buffer overrun in ASN1_parse - bsc#973223: allow weak DH groups, vulnerable to the logjam attack, when environment variable OPENSSL_ALLOW_LOGJAM_ATTACK is set - bsc#889013: Rename README.SuSE to the new spelling
Platform: |
SUSE Linux Enterprise Server 11 SP4 |
Product: |
openssl |
libopenssl0_9_8 |