SUSE-SU-2022:3843-1 -- SLES openssl-3, libopenssl-3-devel, libopenssl3| ID: oval:org.secpod.oval:def:89047830 | Date: (C)2022-11-02 (M)2024-04-17 |
| Class: PATCH | Family: unix |
This update for openssl-3 fixes the following issues: - CVE-2022-3358: Fixed vulnerability where a custom cipher passed to EVP_CipherInit could lead into NULL encryption being unexpectedly used . - CVE-2022-3602: Fixed a buffer overflow in the X.509 email address. - CVE-2022-3786: Fixed another buffer overflow related to X.509 email address
| Platform: |
| SUSE Linux Enterprise Desktop 15 SP4 |
| SUSE Linux Enterprise Server 15 SP4 |
| Product: |
| openssl-3 |
| libopenssl-3-devel |
| libopenssl3 |
