SUSE-SU-2022:3843-1 -- SLES openssl-3, libopenssl-3-devel, libopenssl3ID: oval:org.secpod.oval:def:89047830 | Date: (C)2022-11-02 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for openssl-3 fixes the following issues: - CVE-2022-3358: Fixed vulnerability where a custom cipher passed to EVP_CipherInit could lead into NULL encryption being unexpectedly used . - CVE-2022-3602: Fixed a buffer overflow in the X.509 email address. - CVE-2022-3786: Fixed another buffer overflow related to X.509 email address
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Server 15 SP4 |
Product: |
openssl-3 |
libopenssl-3-devel |
libopenssl3 |