SUSE-SU-2023:0310-1 -- SLES openssl-1_1, libopenssl-1_1-devel, libopenssl1_1| ID: oval:org.secpod.oval:def:89048225 | Date: (C)2023-02-10 (M)2024-02-19 |
| Class: PATCH | Family: unix |
This update for openssl-1_1 fixes the following issues: - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GENERAL_NAME_cmp for x400Address . - CVE-2023-0215: Fixed use-after-free following BIO_new_NDEF . - CVE-2022-4450: Fixed double free after calling PEM_read_bio_ex . - CVE-2022-4304: Fixed timing Oracle in RSA Decryption . - FIPS: list only FIPS approved public key algorithms
| Platform: |
| SUSE Linux Enterprise Server 15 SP2 |
| SUSE Linux Enterprise Server 15 SP3 |
| Product: |
| openssl-1_1 |
| libopenssl-1_1-devel |
| libopenssl1_1 |
