SUSE-SU-2016:1290-1 -- SLES openssl, libopenssl0_9_8| ID: oval:org.secpod.oval:def:89045365 | Date: (C)2021-08-03 (M)2024-02-19 |
| Class: PATCH | Family: unix |
This update for openssl fixes the following issues: Security issues fixed: - CVE-2016-2108: Memory corruption in the ASN.1 encoder - CVE-2016-2105: EVP_EncodeUpdate overflow - CVE-2016-2106: EVP_EncryptUpdate overflow - CVE-2016-2109: ASN.1 BIO excessive memory allocation - CVE-2016-0702: Side channel attack on modular exponentiation CacheBleed Bugs fixed: - fate#320304: build 32bit devel package - bsc#976943: Fix buffer overrun in ASN1_parse - bsc#973223: allow weak DH groups, vulnerable to the logjam attack, when environment variable OPENSSL_ALLOW_LOGJAM_ATTACK is set - bsc#889013: Rename README.SuSE to the new spelling
| Platform: |
| SUSE Linux Enterprise Server 11 SP4 |
| Product: |
| openssl |
| libopenssl0_9_8 |
