libopenssl1_0_0-steam-1.0.2h-4.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10529-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libopenssl1_0_0-steam-1.0.2h-4.1 on GA media These are all security issues fixed in the libopenssl1_0_0-steam-1.0.2h-4.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10529 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-7250/ SUSE CVE CVE-2006-7250 page https://www.suse.com/security/cve/CVE-2008-5077/ SUSE CVE CVE-2008-5077 page https://www.suse.com/security/cve/CVE-2009-0590/ SUSE CVE CVE-2009-0590 page https://www.suse.com/security/cve/CVE-2009-0591/ SUSE CVE CVE-2009-0591 page https://www.suse.com/security/cve/CVE-2009-0789/ SUSE CVE CVE-2009-0789 page https://www.suse.com/security/cve/CVE-2009-1377/ SUSE CVE CVE-2009-1377 page https://www.suse.com/security/cve/CVE-2009-1378/ SUSE CVE CVE-2009-1378 page https://www.suse.com/security/cve/CVE-2009-1379/ SUSE CVE CVE-2009-1379 page https://www.suse.com/security/cve/CVE-2009-1386/ SUSE CVE CVE-2009-1386 page https://www.suse.com/security/cve/CVE-2009-1387/ SUSE CVE CVE-2009-1387 page https://www.suse.com/security/cve/CVE-2010-0740/ SUSE CVE CVE-2010-0740 page https://www.suse.com/security/cve/CVE-2010-0742/ SUSE CVE CVE-2010-0742 page https://www.suse.com/security/cve/CVE-2010-1633/ SUSE CVE CVE-2010-1633 page https://www.suse.com/security/cve/CVE-2010-2939/ SUSE CVE CVE-2010-2939 page https://www.suse.com/security/cve/CVE-2010-3864/ SUSE CVE CVE-2010-3864 page https://www.suse.com/security/cve/CVE-2010-5298/ SUSE CVE CVE-2010-5298 page https://www.suse.com/security/cve/CVE-2011-0014/ SUSE CVE CVE-2011-0014 page https://www.suse.com/security/cve/CVE-2011-3207/ SUSE CVE CVE-2011-3207 page https://www.suse.com/security/cve/CVE-2011-3210/ SUSE CVE CVE-2011-3210 page https://www.suse.com/security/cve/CVE-2011-4108/ SUSE CVE CVE-2011-4108 page https://www.suse.com/security/cve/CVE-2011-4576/ SUSE CVE CVE-2011-4576 page https://www.suse.com/security/cve/CVE-2011-4577/ SUSE CVE CVE-2011-4577 page https://www.suse.com/security/cve/CVE-2011-4619/ SUSE CVE CVE-2011-4619 page https://www.suse.com/security/cve/CVE-2012-0027/ SUSE CVE CVE-2012-0027 page https://www.suse.com/security/cve/CVE-2012-0050/ SUSE CVE CVE-2012-0050 page https://www.suse.com/security/cve/CVE-2012-0884/ SUSE CVE CVE-2012-0884 page https://www.suse.com/security/cve/CVE-2012-1165/ SUSE CVE CVE-2012-1165 page https://www.suse.com/security/cve/CVE-2012-2110/ SUSE CVE CVE-2012-2110 page https://www.suse.com/security/cve/CVE-2012-2686/ SUSE CVE CVE-2012-2686 page https://www.suse.com/security/cve/CVE-2012-4929/ SUSE CVE CVE-2012-4929 page https://www.suse.com/security/cve/CVE-2013-0166/ SUSE CVE CVE-2013-0166 page https://www.suse.com/security/cve/CVE-2013-0169/ SUSE CVE CVE-2013-0169 page https://www.suse.com/security/cve/CVE-2013-4353/ SUSE CVE CVE-2013-4353 page https://www.suse.com/security/cve/CVE-2013-6449/ SUSE CVE CVE-2013-6449 page https://www.suse.com/security/cve/CVE-2013-6450/ SUSE CVE CVE-2013-6450 page https://www.suse.com/security/cve/CVE-2014-0076/ SUSE CVE CVE-2014-0076 page https://www.suse.com/security/cve/CVE-2014-0160/ SUSE CVE CVE-2014-0160 page https://www.suse.com/security/cve/CVE-2014-0195/ SUSE CVE CVE-2014-0195 page https://www.suse.com/security/cve/CVE-2014-0198/ SUSE CVE CVE-2014-0198 page https://www.suse.com/security/cve/CVE-2014-0221/ SUSE CVE CVE-2014-0221 page https://www.suse.com/security/cve/CVE-2014-0224/ SUSE CVE CVE-2014-0224 page https://www.suse.com/security/cve/CVE-2014-3470/ SUSE CVE CVE-2014-3470 page https://www.suse.com/security/cve/CVE-2014-3505/ SUSE CVE CVE-2014-3505 page https://www.suse.com/security/cve/CVE-2014-3506/ SUSE CVE CVE-2014-3506 page https://www.suse.com/security/cve/CVE-2014-3507/ SUSE CVE CVE-2014-3507 page https://www.suse.com/security/cve/CVE-2014-3508/ SUSE CVE CVE-2014-3508 page https://www.suse.com/security/cve/CVE-2014-3509/ SUSE CVE CVE-2014-3509 page https://www.suse.com/security/cve/CVE-2014-3510/ SUSE CVE CVE-2014-3510 page https://www.suse.com/security/cve/CVE-2014-3511/ SUSE CVE CVE-2014-3511 page https://www.suse.com/security/cve/CVE-2014-3512/ SUSE CVE CVE-2014-3512 page https://www.suse.com/security/cve/CVE-2014-3513/ SUSE CVE CVE-2014-3513 page https://www.suse.com/security/cve/CVE-2014-3567/ SUSE CVE CVE-2014-3567 page https://www.suse.com/security/cve/CVE-2014-3568/ SUSE CVE CVE-2014-3568 page https://www.suse.com/security/cve/CVE-2014-3569/ SUSE CVE CVE-2014-3569 page https://www.suse.com/security/cve/CVE-2014-3570/ SUSE CVE CVE-2014-3570 page https://www.suse.com/security/cve/CVE-2014-3571/ SUSE CVE CVE-2014-3571 page https://www.suse.com/security/cve/CVE-2014-3572/ SUSE CVE CVE-2014-3572 page https://www.suse.com/security/cve/CVE-2014-5139/ SUSE CVE CVE-2014-5139 page https://www.suse.com/security/cve/CVE-2014-8275/ SUSE CVE CVE-2014-8275 page https://www.suse.com/security/cve/CVE-2015-0204/ SUSE CVE CVE-2015-0204 page https://www.suse.com/security/cve/CVE-2015-0205/ SUSE CVE CVE-2015-0205 page https://www.suse.com/security/cve/CVE-2015-0206/ SUSE CVE CVE-2015-0206 page https://www.suse.com/security/cve/CVE-2015-0209/ SUSE CVE CVE-2015-0209 page https://www.suse.com/security/cve/CVE-2015-0286/ SUSE CVE CVE-2015-0286 page https://www.suse.com/security/cve/CVE-2015-0287/ SUSE CVE CVE-2015-0287 page https://www.suse.com/security/cve/CVE-2015-0288/ SUSE CVE CVE-2015-0288 page https://www.suse.com/security/cve/CVE-2015-0289/ SUSE CVE CVE-2015-0289 page https://www.suse.com/security/cve/CVE-2015-0293/ SUSE CVE CVE-2015-0293 page https://www.suse.com/security/cve/CVE-2015-1788/ SUSE CVE CVE-2015-1788 page https://www.suse.com/security/cve/CVE-2015-1789/ SUSE CVE CVE-2015-1789 page https://www.suse.com/security/cve/CVE-2015-1790/ SUSE CVE CVE-2015-1790 page https://www.suse.com/security/cve/CVE-2015-1791/ SUSE CVE CVE-2015-1791 page https://www.suse.com/security/cve/CVE-2015-1792/ SUSE CVE CVE-2015-1792 page https://www.suse.com/security/cve/CVE-2015-1793/ SUSE CVE CVE-2015-1793 page https://www.suse.com/security/cve/CVE-2015-1794/ SUSE CVE CVE-2015-1794 page https://www.suse.com/security/cve/CVE-2015-3193/ SUSE CVE CVE-2015-3193 page https://www.suse.com/security/cve/CVE-2015-3194/ SUSE CVE CVE-2015-3194 page https://www.suse.com/security/cve/CVE-2015-3195/ SUSE CVE CVE-2015-3195 page https://www.suse.com/security/cve/CVE-2015-3196/ SUSE CVE CVE-2015-3196 page https://www.suse.com/security/cve/CVE-2015-3197/ SUSE CVE CVE-2015-3197 page https://www.suse.com/security/cve/CVE-2016-0701/ SUSE CVE CVE-2016-0701 page https://www.suse.com/security/cve/CVE-2016-0702/ SUSE CVE CVE-2016-0702 page https://www.suse.com/security/cve/CVE-2016-0705/ SUSE CVE CVE-2016-0705 page https://www.suse.com/security/cve/CVE-2016-0797/ SUSE CVE CVE-2016-0797 page https://www.suse.com/security/cve/CVE-2016-0798/ SUSE CVE CVE-2016-0798 page https://www.suse.com/security/cve/CVE-2016-0800/ SUSE CVE CVE-2016-0800 page https://www.suse.com/security/cve/CVE-2016-2105/ SUSE CVE CVE-2016-2105 page https://www.suse.com/security/cve/CVE-2016-2106/ SUSE CVE CVE-2016-2106 page https://www.suse.com/security/cve/CVE-2016-2107/ SUSE CVE CVE-2016-2107 page https://www.suse.com/security/cve/CVE-2016-2109/ SUSE CVE CVE-2016-2109 page https://www.suse.com/security/cve/CVE-2016-2176/ SUSE CVE CVE-2016-2176 page openSUSE Tumbleweed libopenssl1_0_0-steam-1.0.2h-4.1 libopenssl1_0_0-steam-32bit-1.0.2h-4.1 libopenssl1_0_0-steam-1.0.2h-4.1 as a component of openSUSE Tumbleweed libopenssl1_0_0-steam-32bit-1.0.2h-4.1 as a component of openSUSE Tumbleweed The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message. CVE-2006-7250 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-7250.html CVE-2006-7250 https://bugzilla.suse.com/748738 SUSE Bug 748738 https://bugzilla.suse.com/883307 SUSE Bug 883307 OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys. CVE-2008-5077 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-5077.html CVE-2008-5077 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/465675 SUSE Bug 465675 https://bugzilla.suse.com/465676 SUSE Bug 465676 https://bugzilla.suse.com/468866 SUSE Bug 468866 https://bugzilla.suse.com/470968 SUSE Bug 470968 https://bugzilla.suse.com/475108 SUSE Bug 475108 https://bugzilla.suse.com/552497 SUSE Bug 552497 https://bugzilla.suse.com/629905 SUSE Bug 629905 https://bugzilla.suse.com/708266 SUSE Bug 708266 The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length. CVE-2009-0590 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0590.html CVE-2009-0590 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote attackers to repudiate a signature that originally appeared to be valid but was actually invalid. CVE-2009-0591 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 2.6 AV:N/AC:H/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0591.html CVE-2009-0591 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key. CVE-2009-0789 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0789.html CVE-2009-0789 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug." CVE-2009-1377 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1377.html CVE-2009-1377 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/504687 SUSE Bug 504687 https://bugzilla.suse.com/629905 SUSE Bug 629905 Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka "DTLS fragment handling memory leak." CVE-2009-1378 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1378.html CVE-2009-1378 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/504687 SUSE Bug 504687 https://bugzilla.suse.com/629905 SUSE Bug 629905 Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service (openssl s_client crash) and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server that uses a crafted server certificate. CVE-2009-1379 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1379.html CVE-2009-1379 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/504687 SUSE Bug 504687 https://bugzilla.suse.com/629905 SUSE Bug 629905 ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello. CVE-2009-1386 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1386.html CVE-2009-1386 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/509031 SUSE Bug 509031 https://bugzilla.suse.com/515659 SUSE Bug 515659 https://bugzilla.suse.com/629905 SUSE Bug 629905 The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a "fragment bug." CVE-2009-1387 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1387.html CVE-2009-1387 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/509031 SUSE Bug 509031 https://bugzilla.suse.com/515659 SUSE Bug 515659 https://bugzilla.suse.com/629905 SUSE Bug 629905 The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information. CVE-2010-0740 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0740.html CVE-2010-0740 https://bugzilla.suse.com/590833 SUSE Bug 590833 https://bugzilla.suse.com/629905 SUSE Bug 629905 The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, and possibly execute arbitrary code, via unspecified vectors. CVE-2010-0742 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0742.html CVE-2010-0742 https://bugzilla.suse.com/610642 SUSE Bug 610642 RSA verification recovery in the EVP_PKEY_verify_recover function in OpenSSL 1.x before 1.0.0a, as used by pkeyutl and possibly other applications, returns uninitialized memory upon failure, which might allow context-dependent attackers to bypass intended key requirements or obtain sensitive information via unspecified vectors. NOTE: some of these details are obtained from third party information. CVE-2010-1633 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1633.html CVE-2010-1633 https://bugzilla.suse.com/610642 SUSE Bug 610642 Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue. CVE-2010-2939 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2939.html CVE-2010-2939 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography. CVE-2010-3864 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3864.html CVE-2010-3864 https://bugzilla.suse.com/629905 SUSE Bug 629905 https://bugzilla.suse.com/651003 SUSE Bug 651003 Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment. CVE-2010-5298 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 4 AV:N/AC:H/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-5298.html CVE-2010-5298 https://bugzilla.suse.com/873351 SUSE Bug 873351 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/915913 SUSE Bug 915913 ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka "OCSP stapling vulnerability." CVE-2011-0014 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0014.html CVE-2011-0014 https://bugzilla.suse.com/670526 SUSE Bug 670526 crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past. CVE-2011-3207 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-3207.html CVE-2011-3207 https://bugzilla.suse.com/716143 SUSE Bug 716143 https://bugzilla.suse.com/854391 SUSE Bug 854391 The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service (daemon crash) via out-of-order messages that violate the TLS protocol. CVE-2011-3210 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-3210.html CVE-2011-3210 https://bugzilla.suse.com/716144 SUSE Bug 716144 https://bugzilla.suse.com/854391 SUSE Bug 854391 The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack. CVE-2011-4108 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4108.html CVE-2011-4108 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/742821 SUSE Bug 742821 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/778825 SUSE Bug 778825 https://bugzilla.suse.com/854391 SUSE Bug 854391 The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer. CVE-2011-4576 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4576.html CVE-2011-4576 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/778825 SUSE Bug 778825 https://bugzilla.suse.com/854391 SUSE Bug 854391 OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers. CVE-2011-4577 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4577.html CVE-2011-4577 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/854391 SUSE Bug 854391 The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors. CVE-2011-4619 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4619.html CVE-2011-4619 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/799454 SUSE Bug 799454 https://bugzilla.suse.com/854391 SUSE Bug 854391 The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client. CVE-2012-0027 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0027.html CVE-2012-0027 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/854391 SUSE Bug 854391 OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108. CVE-2012-0050 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0050.html CVE-2012-0050 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/742821 SUSE Bug 742821 https://bugzilla.suse.com/758060 SUSE Bug 758060 The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack (MMA) adaptive chosen ciphertext attack. CVE-2012-0884 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0884.html CVE-2012-0884 https://bugzilla.suse.com/749210 SUSE Bug 749210 https://bugzilla.suse.com/749735 SUSE Bug 749735 https://bugzilla.suse.com/751977 SUSE Bug 751977 https://bugzilla.suse.com/754640 SUSE Bug 754640 https://bugzilla.suse.com/761819 SUSE Bug 761819 https://bugzilla.suse.com/854391 SUSE Bug 854391 The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250. CVE-2012-1165 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1165.html CVE-2012-1165 https://bugzilla.suse.com/749210 SUSE Bug 749210 https://bugzilla.suse.com/749213 SUSE Bug 749213 https://bugzilla.suse.com/751946 SUSE Bug 751946 https://bugzilla.suse.com/754640 SUSE Bug 754640 https://bugzilla.suse.com/854391 SUSE Bug 854391 The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an X.509 certificate or an RSA public key. CVE-2012-2110 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-2110.html CVE-2012-2110 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/778825 SUSE Bug 778825 https://bugzilla.suse.com/854391 SUSE Bug 854391 crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data. CVE-2012-2686 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-2686.html CVE-2012-2686 https://bugzilla.suse.com/802648 SUSE Bug 802648 https://bugzilla.suse.com/854391 SUSE Bug 854391 The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a "CRIME" attack. CVE-2012-4929 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-4929.html CVE-2012-4929 https://bugzilla.suse.com/1011293 SUSE Bug 1011293 https://bugzilla.suse.com/779952 SUSE Bug 779952 https://bugzilla.suse.com/793420 SUSE Bug 793420 https://bugzilla.suse.com/803004 SUSE Bug 803004 https://bugzilla.suse.com/847895 SUSE Bug 847895 OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCSP servers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key. CVE-2013-0166 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0166.html CVE-2013-0166 https://bugzilla.suse.com/802648 SUSE Bug 802648 https://bugzilla.suse.com/802746 SUSE Bug 802746 https://bugzilla.suse.com/813366 SUSE Bug 813366 https://bugzilla.suse.com/821818 SUSE Bug 821818 https://bugzilla.suse.com/833408 SUSE Bug 833408 https://bugzilla.suse.com/854391 SUSE Bug 854391 https://bugzilla.suse.com/905106 SUSE Bug 905106 The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue. CVE-2013-0169 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0169.html CVE-2013-0169 https://bugzilla.suse.com/1070148 SUSE Bug 1070148 https://bugzilla.suse.com/1103036 SUSE Bug 1103036 https://bugzilla.suse.com/1103597 SUSE Bug 1103597 https://bugzilla.suse.com/802184 SUSE Bug 802184 https://bugzilla.suse.com/802648 SUSE Bug 802648 https://bugzilla.suse.com/802746 SUSE Bug 802746 https://bugzilla.suse.com/803379 SUSE Bug 803379 https://bugzilla.suse.com/804654 SUSE Bug 804654 https://bugzilla.suse.com/809839 SUSE Bug 809839 https://bugzilla.suse.com/813366 SUSE Bug 813366 https://bugzilla.suse.com/813939 SUSE Bug 813939 https://bugzilla.suse.com/821818 SUSE Bug 821818 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977616 SUSE Bug 977616 https://bugzilla.suse.com/984977 SUSE Bug 984977 The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake. CVE-2013-4353 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4353.html CVE-2013-4353 https://bugzilla.suse.com/857640 SUSE Bug 857640 The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client. CVE-2013-6449 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-6449.html CVE-2013-6449 https://bugzilla.suse.com/856687 SUSE Bug 856687 The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c. CVE-2013-6450 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-6450.html CVE-2013-6450 https://bugzilla.suse.com/857203 SUSE Bug 857203 https://bugzilla.suse.com/861384 SUSE Bug 861384 https://bugzilla.suse.com/986238 SUSE Bug 986238 The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack. CVE-2014-0076 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0076.html CVE-2014-0076 https://bugzilla.suse.com/869945 SUSE Bug 869945 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/905106 SUSE Bug 905106 The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. CVE-2014-0160 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0160.html CVE-2014-0160 https://bugzilla.suse.com/872299 SUSE Bug 872299 The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment. CVE-2014-0195 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0195.html CVE-2014-0195 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/915913 SUSE Bug 915913 The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition. CVE-2014-0198 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0198.html CVE-2014-0198 https://bugzilla.suse.com/876282 SUSE Bug 876282 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/915913 SUSE Bug 915913 The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake. CVE-2014-0221 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0221.html CVE-2014-0221 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/915913 SUSE Bug 915913 OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability. CVE-2014-0224 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0224.html CVE-2014-0224 https://bugzilla.suse.com/1146657 SUSE Bug 1146657 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/881743 SUSE Bug 881743 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/892403 SUSE Bug 892403 https://bugzilla.suse.com/901237 SUSE Bug 901237 https://bugzilla.suse.com/903703 SUSE Bug 903703 https://bugzilla.suse.com/905018 SUSE Bug 905018 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/914447 SUSE Bug 914447 https://bugzilla.suse.com/915913 SUSE Bug 915913 https://bugzilla.suse.com/916239 SUSE Bug 916239 The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value. CVE-2014-3470 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3470.html CVE-2014-3470 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/915913 SUSE Bug 915913 Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition. CVE-2014-3505 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3505.html CVE-2014-3505 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890767 SUSE Bug 890767 https://bugzilla.suse.com/905106 SUSE Bug 905106 d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values. CVE-2014-3506 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3506.html CVE-2014-3506 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890768 SUSE Bug 890768 https://bugzilla.suse.com/905106 SUSE Bug 905106 Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function. CVE-2014-3507 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3507.html CVE-2014-3507 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890769 SUSE Bug 890769 https://bugzilla.suse.com/905106 SUSE Bug 905106 The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of '\0' characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions. CVE-2014-3508 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3508.html CVE-2014-3508 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/950708 SUSE Bug 950708 Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data. CVE-2014-3509 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3509.html CVE-2014-3509 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890766 SUSE Bug 890766 The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite. CVE-2014-3510 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3510.html CVE-2014-3510 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890770 SUSE Bug 890770 https://bugzilla.suse.com/905106 SUSE Bug 905106 The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue. CVE-2014-3511 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3511.html CVE-2014-3511 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890771 SUSE Bug 890771 Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter. CVE-2014-3512 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3512.html CVE-2014-3512 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890772 SUSE Bug 890772 Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message. CVE-2014-3513 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3513.html CVE-2014-3513 https://bugzilla.suse.com/901277 SUSE Bug 901277 Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure. CVE-2014-3567 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3567.html CVE-2014-3567 https://bugzilla.suse.com/877506 SUSE Bug 877506 https://bugzilla.suse.com/901277 SUSE Bug 901277 https://bugzilla.suse.com/905106 SUSE Bug 905106 OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c. CVE-2014-3568 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3568.html CVE-2014-3568 https://bugzilla.suse.com/901277 SUSE Bug 901277 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/911399 SUSE Bug 911399 https://bugzilla.suse.com/986238 SUSE Bug 986238 The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix. CVE-2014-3569 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5.7 AV:N/AC:M/Au:M/C:N/I:N/A:C 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3569.html CVE-2014-3569 https://bugzilla.suse.com/911399 SUSE Bug 911399 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/986238 SUSE Bug 986238 The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c. CVE-2014-3570 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3570.html CVE-2014-3570 https://bugzilla.suse.com/912296 SUSE Bug 912296 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/944456 SUSE Bug 944456 OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c. CVE-2014-3571 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3571.html CVE-2014-3571 https://bugzilla.suse.com/912294 SUSE Bug 912294 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message. CVE-2014-3572 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3572.html CVE-2014-3572 https://bugzilla.suse.com/912015 SUSE Bug 912015 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client. CVE-2014-5139 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5139.html CVE-2014-5139 https://bugzilla.suse.com/886831 SUSE Bug 886831 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890765 SUSE Bug 890765 OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate's unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c. CVE-2014-8275 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8275.html CVE-2014-8275 https://bugzilla.suse.com/912018 SUSE Bug 912018 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the "FREAK" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations. CVE-2015-0204 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 10 AV:N/AC:L/Au:N/C:C/I:C/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0204.html CVE-2015-0204 https://bugzilla.suse.com/912014 SUSE Bug 912014 https://bugzilla.suse.com/920482 SUSE Bug 920482 https://bugzilla.suse.com/920484 SUSE Bug 920484 https://bugzilla.suse.com/927591 SUSE Bug 927591 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/936787 SUSE Bug 936787 https://bugzilla.suse.com/952088 SUSE Bug 952088 The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support. CVE-2015-0205 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0205.html CVE-2015-0205 https://bugzilla.suse.com/912293 SUSE Bug 912293 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection. CVE-2015-0206 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0206.html CVE-2015-0206 https://bugzilla.suse.com/912292 SUSE Bug 912292 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import. CVE-2015-0209 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0209.html CVE-2015-0209 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature. CVE-2015-0286 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0286.html CVE-2015-0286 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922496 SUSE Bug 922496 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/951391 SUSE Bug 951391 The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse. CVE-2015-0287 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0287.html CVE-2015-0287 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922499 SUSE Bug 922499 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/968888 SUSE Bug 968888 https://bugzilla.suse.com/991722 SUSE Bug 991722 The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key. CVE-2015-0288 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0288.html CVE-2015-0288 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/920236 SUSE Bug 920236 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/951391 SUSE Bug 951391 The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c. CVE-2015-0289 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0289.html CVE-2015-0289 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922500 SUSE Bug 922500 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message. CVE-2015-0293 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0293.html CVE-2015-0293 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922488 SUSE Bug 922488 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968051 SUSE Bug 968051 https://bugzilla.suse.com/968053 SUSE Bug 968053 https://bugzilla.suse.com/986238 SUSE Bug 986238 The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication. CVE-2015-1788 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1788.html CVE-2015-1788 https://bugzilla.suse.com/934487 SUSE Bug 934487 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/938432 SUSE Bug 938432 The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback. CVE-2015-1789 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1789.html CVE-2015-1789 https://bugzilla.suse.com/934489 SUSE Bug 934489 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/938432 SUSE Bug 938432 https://bugzilla.suse.com/951391 SUSE Bug 951391 The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data. CVE-2015-1790 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1790.html CVE-2015-1790 https://bugzilla.suse.com/934491 SUSE Bug 934491 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/938432 SUSE Bug 938432 Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier. CVE-2015-1791 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1791.html CVE-2015-1791 https://bugzilla.suse.com/933911 SUSE Bug 933911 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/986238 SUSE Bug 986238 https://bugzilla.suse.com/989464 SUSE Bug 989464 The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function. CVE-2015-1792 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1792.html CVE-2015-1792 https://bugzilla.suse.com/934493 SUSE Bug 934493 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/986238 SUSE Bug 986238 The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate. CVE-2015-1793 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1793.html CVE-2015-1793 https://bugzilla.suse.com/936746 SUSE Bug 936746 https://bugzilla.suse.com/937637 SUSE Bug 937637 https://bugzilla.suse.com/951391 SUSE Bug 951391 The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message. CVE-2015-1794 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1794.html CVE-2015-1794 https://bugzilla.suse.com/957984 SUSE Bug 957984 The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite. CVE-2015-3193 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3193.html CVE-2015-3193 https://bugzilla.suse.com/1022086 SUSE Bug 1022086 https://bugzilla.suse.com/1066242 SUSE Bug 1066242 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/957814 SUSE Bug 957814 https://bugzilla.suse.com/960151 SUSE Bug 960151 https://bugzilla.suse.com/990370 SUSE Bug 990370 crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter. CVE-2015-3194 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3194.html CVE-2015-3194 https://bugzilla.suse.com/957812 SUSE Bug 957812 https://bugzilla.suse.com/957815 SUSE Bug 957815 https://bugzilla.suse.com/958768 SUSE Bug 958768 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/990370 SUSE Bug 990370 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. CVE-2015-3195 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3195.html CVE-2015-3195 https://bugzilla.suse.com/923755 SUSE Bug 923755 https://bugzilla.suse.com/957812 SUSE Bug 957812 https://bugzilla.suse.com/957815 SUSE Bug 957815 https://bugzilla.suse.com/958768 SUSE Bug 958768 https://bugzilla.suse.com/963977 SUSE Bug 963977 https://bugzilla.suse.com/986238 SUSE Bug 986238 ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message. CVE-2015-3196 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3196.html CVE-2015-3196 https://bugzilla.suse.com/957813 SUSE Bug 957813 ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions. CVE-2015-3197 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3197.html CVE-2015-3197 https://bugzilla.suse.com/963410 SUSE Bug 963410 https://bugzilla.suse.com/963415 SUSE Bug 963415 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968046 SUSE Bug 968046 The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file. CVE-2016-0701 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.1 AV:N/AC:M/Au:N/C:C/I:N/A:N 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0701.html CVE-2016-0701 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/1176331 SUSE Bug 1176331 https://bugzilla.suse.com/1195379 SUSE Bug 1195379 https://bugzilla.suse.com/963410 SUSE Bug 963410 https://bugzilla.suse.com/963413 SUSE Bug 963413 The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a "CacheBleed" attack. CVE-2016-0702 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0702.html CVE-2016-0702 https://bugzilla.suse.com/1007806 SUSE Bug 1007806 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968050 SUSE Bug 968050 https://bugzilla.suse.com/971238 SUSE Bug 971238 https://bugzilla.suse.com/990370 SUSE Bug 990370 Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key. CVE-2016-0705 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 critical 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0705.html CVE-2016-0705 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968047 SUSE Bug 968047 https://bugzilla.suse.com/971238 SUSE Bug 971238 https://bugzilla.suse.com/976341 SUSE Bug 976341 Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c. CVE-2016-0797 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0797.html CVE-2016-0797 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968048 SUSE Bug 968048 https://bugzilla.suse.com/990370 SUSE Bug 990370 Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c. CVE-2016-0798 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0798.html CVE-2016-0798 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968265 SUSE Bug 968265 The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a "DROWN" attack. CVE-2016-0800 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0800.html CVE-2016-0800 https://bugzilla.suse.com/1106871 SUSE Bug 1106871 https://bugzilla.suse.com/961377 SUSE Bug 961377 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968046 SUSE Bug 968046 https://bugzilla.suse.com/968888 SUSE Bug 968888 https://bugzilla.suse.com/969591 SUSE Bug 969591 https://bugzilla.suse.com/979060 SUSE Bug 979060 Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data. CVE-2016-2105 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2105.html CVE-2016-2105 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977614 SUSE Bug 977614 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/989902 SUSE Bug 989902 https://bugzilla.suse.com/990369 SUSE Bug 990369 https://bugzilla.suse.com/990370 SUSE Bug 990370 Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data. CVE-2016-2106 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 low 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2106.html CVE-2016-2106 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977615 SUSE Bug 977615 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/979279 SUSE Bug 979279 https://bugzilla.suse.com/990369 SUSE Bug 990369 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169. CVE-2016-2107 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 7.1 AV:N/AC:M/Au:N/C:C/I:N/A:N 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2107.html CVE-2016-2107 https://bugzilla.suse.com/976942 SUSE Bug 976942 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977616 SUSE Bug 977616 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/990369 SUSE Bug 990369 https://bugzilla.suse.com/990370 SUSE Bug 990370 The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding. CVE-2016-2109 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2109.html CVE-2016-2109 https://bugzilla.suse.com/1015243 SUSE Bug 1015243 https://bugzilla.suse.com/976942 SUSE Bug 976942 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/990369 SUSE Bug 990369 The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data. CVE-2016-2176 openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1 openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1 important 6.4 AV:N/AC:L/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2176.html CVE-2016-2176 https://bugzilla.suse.com/978224 SUSE Bug 978224 https://bugzilla.suse.com/990369 SUSE Bug 990369