bitcoin-qt5-0.13.1-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10528-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z bitcoin-qt5-0.13.1-1.1 on GA media These are all security issues fixed in the bitcoin-qt5-0.13.1-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10528 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2014-0160/ SUSE CVE CVE-2014-0160 page openSUSE Tumbleweed bitcoin-qt5-0.13.1-1.1 bitcoin-test-0.13.1-1.1 bitcoin-utils-0.13.1-1.1 bitcoind-0.13.1-1.1 libbitcoinconsensus-devel-0.13.1-1.1 libbitcoinconsensus0-0.13.1-1.1 sslscan-1.11.8-1.1 bitcoin-qt5-0.13.1-1.1 as a component of openSUSE Tumbleweed bitcoin-test-0.13.1-1.1 as a component of openSUSE Tumbleweed bitcoin-utils-0.13.1-1.1 as a component of openSUSE Tumbleweed bitcoind-0.13.1-1.1 as a component of openSUSE Tumbleweed libbitcoinconsensus-devel-0.13.1-1.1 as a component of openSUSE Tumbleweed libbitcoinconsensus0-0.13.1-1.1 as a component of openSUSE Tumbleweed sslscan-1.11.8-1.1 as a component of openSUSE Tumbleweed The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. CVE-2014-0160 openSUSE Tumbleweed:bitcoin-qt5-0.13.1-1.1 openSUSE Tumbleweed:bitcoin-test-0.13.1-1.1 openSUSE Tumbleweed:bitcoin-utils-0.13.1-1.1 openSUSE Tumbleweed:bitcoind-0.13.1-1.1 openSUSE Tumbleweed:libbitcoinconsensus-devel-0.13.1-1.1 openSUSE Tumbleweed:libbitcoinconsensus0-0.13.1-1.1 openSUSE Tumbleweed:sslscan-1.11.8-1.1 important 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0160.html CVE-2014-0160 https://bugzilla.suse.com/872299 SUSE Bug 872299