SUSE-SU-2015:1150-1

See a problem?
Please try reporting it to the source first.

Source

Import Source

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2015:1150-1

Related

Published

2015-06-17T16:11:28Z

Modified

2015-06-17T16:11:28Z

Summary

Security update for compat-openssl098

Details

This update fixes the following security issues:

CVE-2015-4000 (boo#931698)
- The Logjam Attack / weakdh.org
- reject connections with DH parameters shorter than 1024 bits
- generates 2048-bit DH parameters by default
CVE-2015-1788 (boo#934487)
- Malformed ECParameters causes infinite loop
CVE-2015-1789 (boo#934489)
- Exploitable out-of-bounds read in X509cmptime
CVE-2015-1790 (boo#934491)
- PKCS7 crash with missing EnvelopedContent
CVE-2015-1792 (boo#934493)
- CMS verify infinite loop with unknown hash function
CVE-2015-1791 (boo#933911)
- race condition in NewSessionTicket
CVE-2015-3216 (boo#933898)
- Crash in ssleayrandbytes due to locking regression
- modified openssl-1.0.1i-fipslocking.patch
fix timing side channel in RSA decryption (bnc#929678)
add ECC ciphersuites to DEFAULT (bnc#879179)
Disable EXPORT ciphers by default (bnc#931698, comment #3)

References

Affected packages

Name: compat-openssl098
Purl: purl:rpm/suse/compat-openssl098&distro=SUSE%20Linux%20Enterprise%20Desktop%2012

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.8j-78.1

{
    "binaries": [
        {
            "libopenssl0_9_8": "0.9.8j-78.1",
            "libopenssl0_9_8-32bit": "0.9.8j-78.1"
        }
    ]
}

Name: compat-openssl098
Purl: purl:rpm/suse/compat-openssl098&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2012

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.8j-78.1

{
    "binaries": [
        {
            "libopenssl0_9_8": "0.9.8j-78.1",
            "libopenssl0_9_8-32bit": "0.9.8j-78.1"
        }
    ]
}