libopenssl-devel-1.1.1l-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11125 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libopenssl-devel-1.1.1l-1.2 on GA media These are all security issues fixed in the libopenssl-devel-1.1.1l-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11125 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11125 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-2937/ SUSE CVE CVE-2006-2937 page https://www.suse.com/security/cve/CVE-2006-2940/ SUSE CVE CVE-2006-2940 page https://www.suse.com/security/cve/CVE-2006-3738/ SUSE CVE CVE-2006-3738 page https://www.suse.com/security/cve/CVE-2006-4339/ SUSE CVE CVE-2006-4339 page https://www.suse.com/security/cve/CVE-2006-4343/ SUSE CVE CVE-2006-4343 page https://www.suse.com/security/cve/CVE-2007-3108/ SUSE CVE CVE-2007-3108 page https://www.suse.com/security/cve/CVE-2007-5135/ SUSE CVE CVE-2007-5135 page https://www.suse.com/security/cve/CVE-2008-0891/ SUSE CVE CVE-2008-0891 page https://www.suse.com/security/cve/CVE-2008-1672/ SUSE CVE CVE-2008-1672 page https://www.suse.com/security/cve/CVE-2016-7055/ SUSE CVE CVE-2016-7055 page https://www.suse.com/security/cve/CVE-2016-7056/ SUSE CVE CVE-2016-7056 page https://www.suse.com/security/cve/CVE-2017-3731/ SUSE CVE CVE-2017-3731 page https://www.suse.com/security/cve/CVE-2017-3732/ SUSE CVE CVE-2017-3732 page openSUSE Tumbleweed libopenssl-devel-1.1.1l-1.2 openssl-1.1.1l-1.2 libopenssl-devel-1.1.1l-1.2 as a component of openSUSE Tumbleweed openssl-1.1.1l-1.2 as a component of openSUSE Tumbleweed OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service (infinite loop and memory consumption) via malformed ASN.1 structures that trigger an improperly handled error condition. CVE-2006-2937 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-2937.html CVE-2006-2937 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/215623 SUSE Bug 215623 OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers to cause a denial of service (CPU consumption) via parasitic public keys with large (1) "public exponent" or (2) "public modulus" values in X.509 certificates that require extra time to process when using RSA signature verification. CVE-2006-2940 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-2940.html CVE-2006-2940 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/208971 SUSE Bug 208971 https://bugzilla.suse.com/215623 SUSE Bug 215623 https://bugzilla.suse.com/223040 SUSE Bug 223040 https://bugzilla.suse.com/992991 SUSE Bug 992991 Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers. CVE-2006-3738 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-3738.html CVE-2006-3738 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/215623 SUSE Bug 215623 OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1. CVE-2006-4339 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4339.html CVE-2006-4339 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/203595 SUSE Bug 203595 https://bugzilla.suse.com/206636 SUSE Bug 206636 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/215623 SUSE Bug 215623 https://bugzilla.suse.com/218303 SUSE Bug 218303 https://bugzilla.suse.com/233584 SUSE Bug 233584 https://bugzilla.suse.com/564512 SUSE Bug 564512 The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference. CVE-2006-4343 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4343.html CVE-2006-4343 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/215623 SUSE Bug 215623 The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys. CVE-2007-3108 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-3108.html CVE-2007-3108 https://bugzilla.suse.com/296511 SUSE Bug 296511 Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible. CVE-2007-5135 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-5135.html CVE-2007-5135 https://bugzilla.suse.com/329208 SUSE Bug 329208 https://bugzilla.suse.com/331726 SUSE Bug 331726 https://bugzilla.suse.com/363663 SUSE Bug 363663 Double free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a malformed Client Hello packet. NOTE: some of these details are obtained from third party information. CVE-2008-0891 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-0891.html CVE-2008-0891 https://bugzilla.suse.com/394317 SUSE Bug 394317 https://bugzilla.suse.com/404511 SUSE Bug 404511 OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS handshake that omits the Server Key Exchange message and uses "particular cipher suites," which triggers a NULL pointer dereference. CVE-2008-1672 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1672.html CVE-2008-1672 https://bugzilla.suse.com/394317 SUSE Bug 394317 https://bugzilla.suse.com/404511 SUSE Bug 404511 There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker's direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected. CVE-2016-7055 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7055.html CVE-2016-7055 https://bugzilla.suse.com/1009528 SUSE Bug 1009528 https://bugzilla.suse.com/1021641 SUSE Bug 1021641 A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys. CVE-2016-7056 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate 4.9 AV:L/AC:L/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7056.html CVE-2016-7056 https://bugzilla.suse.com/1005878 SUSE Bug 1005878 https://bugzilla.suse.com/1019334 SUSE Bug 1019334 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resulting in a crash. For OpenSSL 1.1.0, the crash can be triggered when using CHACHA20/POLY1305; users should upgrade to 1.1.0d. For Openssl 1.0.2, the crash can be triggered when using RC4-MD5; users who have not disabled that algorithm should update to 1.0.2k. CVE-2017-3731 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3731.html CVE-2017-3731 https://bugzilla.suse.com/1021641 SUSE Bug 1021641 https://bugzilla.suse.com/1022085 SUSE Bug 1022085 https://bugzilla.suse.com/1064118 SUSE Bug 1064118 https://bugzilla.suse.com/1064119 SUSE Bug 1064119 There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem. CVE-2017-3732 openSUSE Tumbleweed:libopenssl-devel-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1.1.1l-1.2 moderate 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3732.html CVE-2017-3732 https://bugzilla.suse.com/1021641 SUSE Bug 1021641 https://bugzilla.suse.com/1022086 SUSE Bug 1022086 https://bugzilla.suse.com/1049418 SUSE Bug 1049418 https://bugzilla.suse.com/1049421 SUSE Bug 1049421 https://bugzilla.suse.com/1049422 SUSE Bug 1049422 https://bugzilla.suse.com/1066242 SUSE Bug 1066242 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/957814 SUSE Bug 957814