SUSE-SU-2023:0310-1 -- SLES openssl-1_1, libopenssl-1_1-devel, libopenssl1_1ID: oval:org.secpod.oval:def:89048225 | Date: (C)2023-02-10 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for openssl-1_1 fixes the following issues: - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GENERAL_NAME_cmp for x400Address . - CVE-2023-0215: Fixed use-after-free following BIO_new_NDEF . - CVE-2022-4450: Fixed double free after calling PEM_read_bio_ex . - CVE-2022-4304: Fixed timing Oracle in RSA Decryption . - FIPS: list only FIPS approved public key algorithms
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
Product: |
openssl-1_1 |
libopenssl-1_1-devel |
libopenssl1_1 |