SUSE-SU-2025:1550-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2025/suse-su-20251550-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:1550-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2025:1550-1
Related
  • CVE-2025-27587
Published
2025-05-14T17:05:19Z
Modified
2025-05-15T13:29:08.113784Z
Upstream
  • CVE-2025-27587
Summary
Security update for openssl-3
Details

This update for openssl-3 fixes the following issues:

Security:

  • CVE-2025-27587: Timing side channel vulnerability in the P-384 implementation when used with ECDSA in the PPC architecture (bsc#1240366).
  • Missing null pointer check before accessing handshakefunc in ssllib.c (bsc#1240607).

FIPS:

  • Disabling EMS in OpenSSL configuration prevents sshd from starting (bsc#1230959, bsc#1232326, bsc#1231748).
References

Affected packages

SUSE:Linux Enterprise Module for Basesystem 15 SP6 / openssl-3

Package

Name
openssl-3
Purl
pkg:rpm/suse/openssl-3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1.4-150600.5.27.1

Ecosystem specific 

{
    "binaries": [
        {
            "libopenssl-3-fips-provider-32bit": "3.1.4-150600.5.27.1",
            "libopenssl-3-fips-provider": "3.1.4-150600.5.27.1",
            "openssl-3": "3.1.4-150600.5.27.1",
            "libopenssl3": "3.1.4-150600.5.27.1",
            "libopenssl-3-devel": "3.1.4-150600.5.27.1",
            "libopenssl3-32bit": "3.1.4-150600.5.27.1"
        }
    ]
}

openSUSE:Leap 15.6 / openssl-3

Package

Name
openssl-3
Purl
pkg:rpm/opensuse/openssl-3&distro=openSUSE%20Leap%2015.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1.4-150600.5.27.1

Ecosystem specific 

{
    "binaries": [
        {
            "libopenssl-3-devel-32bit": "3.1.4-150600.5.27.1",
            "libopenssl-3-fips-provider-32bit": "3.1.4-150600.5.27.1",
            "libopenssl-3-fips-provider": "3.1.4-150600.5.27.1",
            "openssl-3-doc": "3.1.4-150600.5.27.1",
            "openssl-3": "3.1.4-150600.5.27.1",
            "libopenssl-3-devel": "3.1.4-150600.5.27.1",
            "libopenssl3-32bit": "3.1.4-150600.5.27.1",
            "libopenssl3": "3.1.4-150600.5.27.1"
        }
    ]
}