libopenssl-1_1-devel-1.1.1l-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11127 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libopenssl-1_1-devel-1.1.1l-1.2 on GA media These are all security issues fixed in the libopenssl-1_1-devel-1.1.1l-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11127 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11127 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-2937/ SUSE CVE CVE-2006-2937 page https://www.suse.com/security/cve/CVE-2006-2940/ SUSE CVE CVE-2006-2940 page https://www.suse.com/security/cve/CVE-2006-3738/ SUSE CVE CVE-2006-3738 page https://www.suse.com/security/cve/CVE-2006-4339/ SUSE CVE CVE-2006-4339 page https://www.suse.com/security/cve/CVE-2006-4343/ SUSE CVE CVE-2006-4343 page https://www.suse.com/security/cve/CVE-2006-7250/ SUSE CVE CVE-2006-7250 page https://www.suse.com/security/cve/CVE-2007-3108/ SUSE CVE CVE-2007-3108 page https://www.suse.com/security/cve/CVE-2007-5135/ SUSE CVE CVE-2007-5135 page https://www.suse.com/security/cve/CVE-2008-0891/ SUSE CVE CVE-2008-0891 page https://www.suse.com/security/cve/CVE-2008-1672/ SUSE CVE CVE-2008-1672 page https://www.suse.com/security/cve/CVE-2008-5077/ SUSE CVE CVE-2008-5077 page https://www.suse.com/security/cve/CVE-2009-0590/ SUSE CVE CVE-2009-0590 page https://www.suse.com/security/cve/CVE-2009-0591/ SUSE CVE CVE-2009-0591 page https://www.suse.com/security/cve/CVE-2009-0789/ SUSE CVE CVE-2009-0789 page https://www.suse.com/security/cve/CVE-2009-1377/ SUSE CVE CVE-2009-1377 page https://www.suse.com/security/cve/CVE-2009-1378/ SUSE CVE CVE-2009-1378 page https://www.suse.com/security/cve/CVE-2009-1379/ SUSE CVE CVE-2009-1379 page https://www.suse.com/security/cve/CVE-2009-1386/ SUSE CVE CVE-2009-1386 page https://www.suse.com/security/cve/CVE-2009-1387/ SUSE CVE CVE-2009-1387 page https://www.suse.com/security/cve/CVE-2010-0740/ SUSE CVE CVE-2010-0740 page https://www.suse.com/security/cve/CVE-2010-0742/ SUSE CVE CVE-2010-0742 page https://www.suse.com/security/cve/CVE-2010-1633/ SUSE CVE CVE-2010-1633 page https://www.suse.com/security/cve/CVE-2010-2939/ SUSE CVE CVE-2010-2939 page https://www.suse.com/security/cve/CVE-2010-3864/ SUSE CVE CVE-2010-3864 page https://www.suse.com/security/cve/CVE-2010-5298/ SUSE CVE CVE-2010-5298 page https://www.suse.com/security/cve/CVE-2011-0014/ SUSE CVE CVE-2011-0014 page https://www.suse.com/security/cve/CVE-2011-3207/ SUSE CVE CVE-2011-3207 page https://www.suse.com/security/cve/CVE-2011-4108/ SUSE CVE CVE-2011-4108 page https://www.suse.com/security/cve/CVE-2011-4576/ SUSE CVE CVE-2011-4576 page https://www.suse.com/security/cve/CVE-2011-4577/ SUSE CVE CVE-2011-4577 page https://www.suse.com/security/cve/CVE-2011-4619/ SUSE CVE CVE-2011-4619 page https://www.suse.com/security/cve/CVE-2012-0027/ SUSE CVE CVE-2012-0027 page https://www.suse.com/security/cve/CVE-2012-0050/ SUSE CVE CVE-2012-0050 page https://www.suse.com/security/cve/CVE-2012-0884/ SUSE CVE CVE-2012-0884 page https://www.suse.com/security/cve/CVE-2012-1165/ SUSE CVE CVE-2012-1165 page https://www.suse.com/security/cve/CVE-2012-2110/ SUSE CVE CVE-2012-2110 page https://www.suse.com/security/cve/CVE-2012-2686/ SUSE CVE CVE-2012-2686 page https://www.suse.com/security/cve/CVE-2012-4929/ SUSE CVE CVE-2012-4929 page https://www.suse.com/security/cve/CVE-2013-0166/ SUSE CVE CVE-2013-0166 page https://www.suse.com/security/cve/CVE-2013-0169/ SUSE CVE CVE-2013-0169 page https://www.suse.com/security/cve/CVE-2013-4353/ SUSE CVE CVE-2013-4353 page https://www.suse.com/security/cve/CVE-2013-6449/ SUSE CVE CVE-2013-6449 page https://www.suse.com/security/cve/CVE-2013-6450/ SUSE CVE CVE-2013-6450 page https://www.suse.com/security/cve/CVE-2014-0076/ SUSE CVE CVE-2014-0076 page https://www.suse.com/security/cve/CVE-2014-0160/ SUSE CVE CVE-2014-0160 page https://www.suse.com/security/cve/CVE-2014-0195/ SUSE CVE CVE-2014-0195 page https://www.suse.com/security/cve/CVE-2014-0198/ SUSE CVE CVE-2014-0198 page https://www.suse.com/security/cve/CVE-2014-0221/ SUSE CVE CVE-2014-0221 page https://www.suse.com/security/cve/CVE-2014-0224/ SUSE CVE CVE-2014-0224 page https://www.suse.com/security/cve/CVE-2014-3470/ SUSE CVE CVE-2014-3470 page https://www.suse.com/security/cve/CVE-2014-3505/ SUSE CVE CVE-2014-3505 page https://www.suse.com/security/cve/CVE-2014-3506/ SUSE CVE CVE-2014-3506 page https://www.suse.com/security/cve/CVE-2014-3507/ SUSE CVE CVE-2014-3507 page https://www.suse.com/security/cve/CVE-2014-3508/ SUSE CVE CVE-2014-3508 page https://www.suse.com/security/cve/CVE-2014-3509/ SUSE CVE CVE-2014-3509 page https://www.suse.com/security/cve/CVE-2014-3510/ SUSE CVE CVE-2014-3510 page https://www.suse.com/security/cve/CVE-2014-3511/ SUSE CVE CVE-2014-3511 page https://www.suse.com/security/cve/CVE-2014-3512/ SUSE CVE CVE-2014-3512 page https://www.suse.com/security/cve/CVE-2014-3513/ SUSE CVE CVE-2014-3513 page https://www.suse.com/security/cve/CVE-2014-3567/ SUSE CVE CVE-2014-3567 page https://www.suse.com/security/cve/CVE-2014-3568/ SUSE CVE CVE-2014-3568 page https://www.suse.com/security/cve/CVE-2014-3569/ SUSE CVE CVE-2014-3569 page https://www.suse.com/security/cve/CVE-2014-3570/ SUSE CVE CVE-2014-3570 page https://www.suse.com/security/cve/CVE-2014-3571/ SUSE CVE CVE-2014-3571 page https://www.suse.com/security/cve/CVE-2014-3572/ SUSE CVE CVE-2014-3572 page https://www.suse.com/security/cve/CVE-2014-5139/ SUSE CVE CVE-2014-5139 page https://www.suse.com/security/cve/CVE-2014-8275/ SUSE CVE CVE-2014-8275 page https://www.suse.com/security/cve/CVE-2015-0204/ SUSE CVE CVE-2015-0204 page https://www.suse.com/security/cve/CVE-2015-0205/ SUSE CVE CVE-2015-0205 page https://www.suse.com/security/cve/CVE-2015-0206/ SUSE CVE CVE-2015-0206 page https://www.suse.com/security/cve/CVE-2015-0209/ SUSE CVE CVE-2015-0209 page https://www.suse.com/security/cve/CVE-2015-0286/ SUSE CVE CVE-2015-0286 page https://www.suse.com/security/cve/CVE-2015-0287/ SUSE CVE CVE-2015-0287 page https://www.suse.com/security/cve/CVE-2015-0288/ SUSE CVE CVE-2015-0288 page https://www.suse.com/security/cve/CVE-2015-0289/ SUSE CVE CVE-2015-0289 page https://www.suse.com/security/cve/CVE-2015-0293/ SUSE CVE CVE-2015-0293 page https://www.suse.com/security/cve/CVE-2015-1788/ SUSE CVE CVE-2015-1788 page https://www.suse.com/security/cve/CVE-2015-1789/ SUSE CVE CVE-2015-1789 page https://www.suse.com/security/cve/CVE-2015-1790/ SUSE CVE CVE-2015-1790 page https://www.suse.com/security/cve/CVE-2015-1791/ SUSE CVE CVE-2015-1791 page https://www.suse.com/security/cve/CVE-2015-1792/ SUSE CVE CVE-2015-1792 page https://www.suse.com/security/cve/CVE-2015-1793/ SUSE CVE CVE-2015-1793 page https://www.suse.com/security/cve/CVE-2015-1794/ SUSE CVE CVE-2015-1794 page https://www.suse.com/security/cve/CVE-2015-3193/ SUSE CVE CVE-2015-3193 page https://www.suse.com/security/cve/CVE-2015-3194/ SUSE CVE CVE-2015-3194 page https://www.suse.com/security/cve/CVE-2015-3195/ SUSE CVE CVE-2015-3195 page https://www.suse.com/security/cve/CVE-2015-3196/ SUSE CVE CVE-2015-3196 page https://www.suse.com/security/cve/CVE-2015-3197/ SUSE CVE CVE-2015-3197 page https://www.suse.com/security/cve/CVE-2016-0701/ SUSE CVE CVE-2016-0701 page https://www.suse.com/security/cve/CVE-2016-0702/ SUSE CVE CVE-2016-0702 page https://www.suse.com/security/cve/CVE-2016-0705/ SUSE CVE CVE-2016-0705 page https://www.suse.com/security/cve/CVE-2016-0797/ SUSE CVE CVE-2016-0797 page https://www.suse.com/security/cve/CVE-2016-0798/ SUSE CVE CVE-2016-0798 page https://www.suse.com/security/cve/CVE-2016-0800/ SUSE CVE CVE-2016-0800 page https://www.suse.com/security/cve/CVE-2016-2105/ SUSE CVE CVE-2016-2105 page https://www.suse.com/security/cve/CVE-2016-2106/ SUSE CVE CVE-2016-2106 page https://www.suse.com/security/cve/CVE-2016-2107/ SUSE CVE CVE-2016-2107 page https://www.suse.com/security/cve/CVE-2016-2109/ SUSE CVE CVE-2016-2109 page https://www.suse.com/security/cve/CVE-2016-2176/ SUSE CVE CVE-2016-2176 page https://www.suse.com/security/cve/CVE-2016-2177/ SUSE CVE CVE-2016-2177 page https://www.suse.com/security/cve/CVE-2016-2178/ SUSE CVE CVE-2016-2178 page https://www.suse.com/security/cve/CVE-2016-2179/ SUSE CVE CVE-2016-2179 page https://www.suse.com/security/cve/CVE-2016-2180/ SUSE CVE CVE-2016-2180 page https://www.suse.com/security/cve/CVE-2016-2181/ SUSE CVE CVE-2016-2181 page https://www.suse.com/security/cve/CVE-2016-2182/ SUSE CVE CVE-2016-2182 page https://www.suse.com/security/cve/CVE-2016-2183/ SUSE CVE CVE-2016-2183 page https://www.suse.com/security/cve/CVE-2016-6302/ SUSE CVE CVE-2016-6302 page https://www.suse.com/security/cve/CVE-2016-6303/ SUSE CVE CVE-2016-6303 page https://www.suse.com/security/cve/CVE-2016-6304/ SUSE CVE CVE-2016-6304 page https://www.suse.com/security/cve/CVE-2016-6306/ SUSE CVE CVE-2016-6306 page https://www.suse.com/security/cve/CVE-2016-7052/ SUSE CVE CVE-2016-7052 page https://www.suse.com/security/cve/CVE-2016-7055/ SUSE CVE CVE-2016-7055 page https://www.suse.com/security/cve/CVE-2016-7056/ SUSE CVE CVE-2016-7056 page https://www.suse.com/security/cve/CVE-2017-3731/ SUSE CVE CVE-2017-3731 page https://www.suse.com/security/cve/CVE-2017-3732/ SUSE CVE CVE-2017-3732 page https://www.suse.com/security/cve/CVE-2017-3735/ SUSE CVE CVE-2017-3735 page https://www.suse.com/security/cve/CVE-2017-3736/ SUSE CVE CVE-2017-3736 page https://www.suse.com/security/cve/CVE-2017-3738/ SUSE CVE CVE-2017-3738 page https://www.suse.com/security/cve/CVE-2018-0732/ SUSE CVE CVE-2018-0732 page https://www.suse.com/security/cve/CVE-2018-0734/ SUSE CVE CVE-2018-0734 page https://www.suse.com/security/cve/CVE-2018-0735/ SUSE CVE CVE-2018-0735 page https://www.suse.com/security/cve/CVE-2018-0737/ SUSE CVE CVE-2018-0737 page https://www.suse.com/security/cve/CVE-2018-0739/ SUSE CVE CVE-2018-0739 page https://www.suse.com/security/cve/CVE-2019-1543/ SUSE CVE CVE-2019-1543 page https://www.suse.com/security/cve/CVE-2019-1547/ SUSE CVE CVE-2019-1547 page https://www.suse.com/security/cve/CVE-2019-1549/ SUSE CVE CVE-2019-1549 page https://www.suse.com/security/cve/CVE-2019-1551/ SUSE CVE CVE-2019-1551 page https://www.suse.com/security/cve/CVE-2019-1563/ SUSE CVE CVE-2019-1563 page https://www.suse.com/security/cve/CVE-2020-1967/ SUSE CVE CVE-2020-1967 page https://www.suse.com/security/cve/CVE-2020-1971/ SUSE CVE CVE-2020-1971 page https://www.suse.com/security/cve/CVE-2021-23840/ SUSE CVE CVE-2021-23840 page https://www.suse.com/security/cve/CVE-2021-23841/ SUSE CVE CVE-2021-23841 page https://www.suse.com/security/cve/CVE-2021-3449/ SUSE CVE CVE-2021-3449 page https://www.suse.com/security/cve/CVE-2021-3450/ SUSE CVE CVE-2021-3450 page https://www.suse.com/security/cve/CVE-2021-3711/ SUSE CVE CVE-2021-3711 page https://www.suse.com/security/cve/CVE-2021-3712/ SUSE CVE CVE-2021-3712 page openSUSE Tumbleweed libopenssl-1_1-devel-1.1.1l-1.2 libopenssl-1_1-devel-32bit-1.1.1l-1.2 libopenssl1_1-1.1.1l-1.2 libopenssl1_1-32bit-1.1.1l-1.2 libopenssl1_1-hmac-1.1.1l-1.2 openssl-1_1-1.1.1l-1.2 openssl-1_1-doc-1.1.1l-1.2 libopenssl-1_1-devel-1.1.1l-1.2 as a component of openSUSE Tumbleweed libopenssl-1_1-devel-32bit-1.1.1l-1.2 as a component of openSUSE Tumbleweed libopenssl1_1-1.1.1l-1.2 as a component of openSUSE Tumbleweed libopenssl1_1-32bit-1.1.1l-1.2 as a component of openSUSE Tumbleweed libopenssl1_1-hmac-1.1.1l-1.2 as a component of openSUSE Tumbleweed openssl-1_1-1.1.1l-1.2 as a component of openSUSE Tumbleweed openssl-1_1-doc-1.1.1l-1.2 as a component of openSUSE Tumbleweed OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service (infinite loop and memory consumption) via malformed ASN.1 structures that trigger an improperly handled error condition. CVE-2006-2937 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-2937.html CVE-2006-2937 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/215623 SUSE Bug 215623 OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers to cause a denial of service (CPU consumption) via parasitic public keys with large (1) "public exponent" or (2) "public modulus" values in X.509 certificates that require extra time to process when using RSA signature verification. CVE-2006-2940 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-2940.html CVE-2006-2940 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/208971 SUSE Bug 208971 https://bugzilla.suse.com/215623 SUSE Bug 215623 https://bugzilla.suse.com/223040 SUSE Bug 223040 https://bugzilla.suse.com/992991 SUSE Bug 992991 Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers. CVE-2006-3738 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-3738.html CVE-2006-3738 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/215623 SUSE Bug 215623 OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1. CVE-2006-4339 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4339.html CVE-2006-4339 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/203595 SUSE Bug 203595 https://bugzilla.suse.com/206636 SUSE Bug 206636 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/215623 SUSE Bug 215623 https://bugzilla.suse.com/218303 SUSE Bug 218303 https://bugzilla.suse.com/233584 SUSE Bug 233584 https://bugzilla.suse.com/564512 SUSE Bug 564512 The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference. CVE-2006-4343 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4343.html CVE-2006-4343 https://bugzilla.suse.com/202366 SUSE Bug 202366 https://bugzilla.suse.com/207635 SUSE Bug 207635 https://bugzilla.suse.com/215623 SUSE Bug 215623 The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message. CVE-2006-7250 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-7250.html CVE-2006-7250 https://bugzilla.suse.com/748738 SUSE Bug 748738 https://bugzilla.suse.com/883307 SUSE Bug 883307 The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys. CVE-2007-3108 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-3108.html CVE-2007-3108 https://bugzilla.suse.com/296511 SUSE Bug 296511 Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible. CVE-2007-5135 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-5135.html CVE-2007-5135 https://bugzilla.suse.com/329208 SUSE Bug 329208 https://bugzilla.suse.com/331726 SUSE Bug 331726 https://bugzilla.suse.com/363663 SUSE Bug 363663 Double free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a malformed Client Hello packet. NOTE: some of these details are obtained from third party information. CVE-2008-0891 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-0891.html CVE-2008-0891 https://bugzilla.suse.com/394317 SUSE Bug 394317 https://bugzilla.suse.com/404511 SUSE Bug 404511 OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS handshake that omits the Server Key Exchange message and uses "particular cipher suites," which triggers a NULL pointer dereference. CVE-2008-1672 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1672.html CVE-2008-1672 https://bugzilla.suse.com/394317 SUSE Bug 394317 https://bugzilla.suse.com/404511 SUSE Bug 404511 OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys. CVE-2008-5077 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-5077.html CVE-2008-5077 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/465675 SUSE Bug 465675 https://bugzilla.suse.com/465676 SUSE Bug 465676 https://bugzilla.suse.com/468866 SUSE Bug 468866 https://bugzilla.suse.com/470968 SUSE Bug 470968 https://bugzilla.suse.com/475108 SUSE Bug 475108 https://bugzilla.suse.com/552497 SUSE Bug 552497 https://bugzilla.suse.com/629905 SUSE Bug 629905 https://bugzilla.suse.com/708266 SUSE Bug 708266 The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length. CVE-2009-0590 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0590.html CVE-2009-0590 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote attackers to repudiate a signature that originally appeared to be valid but was actually invalid. CVE-2009-0591 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0591.html CVE-2009-0591 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key. CVE-2009-0789 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0789.html CVE-2009-0789 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug." CVE-2009-1377 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1377.html CVE-2009-1377 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/504687 SUSE Bug 504687 https://bugzilla.suse.com/629905 SUSE Bug 629905 Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka "DTLS fragment handling memory leak." CVE-2009-1378 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1378.html CVE-2009-1378 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/504687 SUSE Bug 504687 https://bugzilla.suse.com/629905 SUSE Bug 629905 Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service (openssl s_client crash) and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server that uses a crafted server certificate. CVE-2009-1379 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1379.html CVE-2009-1379 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/504687 SUSE Bug 504687 https://bugzilla.suse.com/629905 SUSE Bug 629905 ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello. CVE-2009-1386 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1386.html CVE-2009-1386 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/509031 SUSE Bug 509031 https://bugzilla.suse.com/515659 SUSE Bug 515659 https://bugzilla.suse.com/629905 SUSE Bug 629905 The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a "fragment bug." CVE-2009-1387 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1387.html CVE-2009-1387 https://bugzilla.suse.com/459468 SUSE Bug 459468 https://bugzilla.suse.com/509031 SUSE Bug 509031 https://bugzilla.suse.com/515659 SUSE Bug 515659 https://bugzilla.suse.com/629905 SUSE Bug 629905 The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information. CVE-2010-0740 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0740.html CVE-2010-0740 https://bugzilla.suse.com/590833 SUSE Bug 590833 https://bugzilla.suse.com/629905 SUSE Bug 629905 The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, and possibly execute arbitrary code, via unspecified vectors. CVE-2010-0742 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0742.html CVE-2010-0742 https://bugzilla.suse.com/610642 SUSE Bug 610642 RSA verification recovery in the EVP_PKEY_verify_recover function in OpenSSL 1.x before 1.0.0a, as used by pkeyutl and possibly other applications, returns uninitialized memory upon failure, which might allow context-dependent attackers to bypass intended key requirements or obtain sensitive information via unspecified vectors. NOTE: some of these details are obtained from third party information. CVE-2010-1633 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1633.html CVE-2010-1633 https://bugzilla.suse.com/610642 SUSE Bug 610642 Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue. CVE-2010-2939 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2939.html CVE-2010-2939 https://bugzilla.suse.com/489641 SUSE Bug 489641 https://bugzilla.suse.com/629905 SUSE Bug 629905 Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography. CVE-2010-3864 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3864.html CVE-2010-3864 https://bugzilla.suse.com/629905 SUSE Bug 629905 https://bugzilla.suse.com/651003 SUSE Bug 651003 Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment. CVE-2010-5298 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-5298.html CVE-2010-5298 https://bugzilla.suse.com/873351 SUSE Bug 873351 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/915913 SUSE Bug 915913 ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka "OCSP stapling vulnerability." CVE-2011-0014 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0014.html CVE-2011-0014 https://bugzilla.suse.com/670526 SUSE Bug 670526 crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past. CVE-2011-3207 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-3207.html CVE-2011-3207 https://bugzilla.suse.com/716143 SUSE Bug 716143 https://bugzilla.suse.com/854391 SUSE Bug 854391 The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack. CVE-2011-4108 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4108.html CVE-2011-4108 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/742821 SUSE Bug 742821 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/778825 SUSE Bug 778825 https://bugzilla.suse.com/854391 SUSE Bug 854391 The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer. CVE-2011-4576 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4576.html CVE-2011-4576 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/778825 SUSE Bug 778825 https://bugzilla.suse.com/854391 SUSE Bug 854391 OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers. CVE-2011-4577 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4577.html CVE-2011-4577 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/854391 SUSE Bug 854391 The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors. CVE-2011-4619 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4619.html CVE-2011-4619 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/799454 SUSE Bug 799454 https://bugzilla.suse.com/854391 SUSE Bug 854391 The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client. CVE-2012-0027 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0027.html CVE-2012-0027 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/854391 SUSE Bug 854391 OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108. CVE-2012-0050 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0050.html CVE-2012-0050 https://bugzilla.suse.com/739719 SUSE Bug 739719 https://bugzilla.suse.com/742821 SUSE Bug 742821 https://bugzilla.suse.com/758060 SUSE Bug 758060 The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack (MMA) adaptive chosen ciphertext attack. CVE-2012-0884 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0884.html CVE-2012-0884 https://bugzilla.suse.com/749210 SUSE Bug 749210 https://bugzilla.suse.com/749735 SUSE Bug 749735 https://bugzilla.suse.com/751977 SUSE Bug 751977 https://bugzilla.suse.com/754640 SUSE Bug 754640 https://bugzilla.suse.com/761819 SUSE Bug 761819 https://bugzilla.suse.com/854391 SUSE Bug 854391 The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250. CVE-2012-1165 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1165.html CVE-2012-1165 https://bugzilla.suse.com/749210 SUSE Bug 749210 https://bugzilla.suse.com/749213 SUSE Bug 749213 https://bugzilla.suse.com/751946 SUSE Bug 751946 https://bugzilla.suse.com/754640 SUSE Bug 754640 https://bugzilla.suse.com/854391 SUSE Bug 854391 The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an X.509 certificate or an RSA public key. CVE-2012-2110 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-2110.html CVE-2012-2110 https://bugzilla.suse.com/758060 SUSE Bug 758060 https://bugzilla.suse.com/778825 SUSE Bug 778825 https://bugzilla.suse.com/854391 SUSE Bug 854391 crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data. CVE-2012-2686 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-2686.html CVE-2012-2686 https://bugzilla.suse.com/802648 SUSE Bug 802648 https://bugzilla.suse.com/854391 SUSE Bug 854391 The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a "CRIME" attack. CVE-2012-4929 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-4929.html CVE-2012-4929 https://bugzilla.suse.com/1011293 SUSE Bug 1011293 https://bugzilla.suse.com/779952 SUSE Bug 779952 https://bugzilla.suse.com/793420 SUSE Bug 793420 https://bugzilla.suse.com/803004 SUSE Bug 803004 https://bugzilla.suse.com/847895 SUSE Bug 847895 OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCSP servers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key. CVE-2013-0166 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0166.html CVE-2013-0166 https://bugzilla.suse.com/802648 SUSE Bug 802648 https://bugzilla.suse.com/802746 SUSE Bug 802746 https://bugzilla.suse.com/813366 SUSE Bug 813366 https://bugzilla.suse.com/821818 SUSE Bug 821818 https://bugzilla.suse.com/833408 SUSE Bug 833408 https://bugzilla.suse.com/854391 SUSE Bug 854391 https://bugzilla.suse.com/905106 SUSE Bug 905106 The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue. CVE-2013-0169 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0169.html CVE-2013-0169 https://bugzilla.suse.com/1070148 SUSE Bug 1070148 https://bugzilla.suse.com/1103036 SUSE Bug 1103036 https://bugzilla.suse.com/1103597 SUSE Bug 1103597 https://bugzilla.suse.com/802184 SUSE Bug 802184 https://bugzilla.suse.com/802648 SUSE Bug 802648 https://bugzilla.suse.com/802746 SUSE Bug 802746 https://bugzilla.suse.com/803379 SUSE Bug 803379 https://bugzilla.suse.com/804654 SUSE Bug 804654 https://bugzilla.suse.com/809839 SUSE Bug 809839 https://bugzilla.suse.com/813366 SUSE Bug 813366 https://bugzilla.suse.com/813939 SUSE Bug 813939 https://bugzilla.suse.com/821818 SUSE Bug 821818 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977616 SUSE Bug 977616 https://bugzilla.suse.com/984977 SUSE Bug 984977 The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake. CVE-2013-4353 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4353.html CVE-2013-4353 https://bugzilla.suse.com/857640 SUSE Bug 857640 The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client. CVE-2013-6449 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-6449.html CVE-2013-6449 https://bugzilla.suse.com/856687 SUSE Bug 856687 The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c. CVE-2013-6450 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-6450.html CVE-2013-6450 https://bugzilla.suse.com/857203 SUSE Bug 857203 https://bugzilla.suse.com/861384 SUSE Bug 861384 https://bugzilla.suse.com/986238 SUSE Bug 986238 The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack. CVE-2014-0076 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0076.html CVE-2014-0076 https://bugzilla.suse.com/869945 SUSE Bug 869945 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/905106 SUSE Bug 905106 The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. CVE-2014-0160 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0160.html CVE-2014-0160 https://bugzilla.suse.com/872299 SUSE Bug 872299 The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment. CVE-2014-0195 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0195.html CVE-2014-0195 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/915913 SUSE Bug 915913 The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition. CVE-2014-0198 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0198.html CVE-2014-0198 https://bugzilla.suse.com/876282 SUSE Bug 876282 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/915913 SUSE Bug 915913 The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake. CVE-2014-0221 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0221.html CVE-2014-0221 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/915913 SUSE Bug 915913 OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability. CVE-2014-0224 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0224.html CVE-2014-0224 https://bugzilla.suse.com/1146657 SUSE Bug 1146657 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/881743 SUSE Bug 881743 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/892403 SUSE Bug 892403 https://bugzilla.suse.com/901237 SUSE Bug 901237 https://bugzilla.suse.com/903703 SUSE Bug 903703 https://bugzilla.suse.com/905018 SUSE Bug 905018 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/914447 SUSE Bug 914447 https://bugzilla.suse.com/915913 SUSE Bug 915913 https://bugzilla.suse.com/916239 SUSE Bug 916239 The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value. CVE-2014-3470 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3470.html CVE-2014-3470 https://bugzilla.suse.com/880891 SUSE Bug 880891 https://bugzilla.suse.com/883126 SUSE Bug 883126 https://bugzilla.suse.com/885777 SUSE Bug 885777 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/915913 SUSE Bug 915913 Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition. CVE-2014-3505 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3505.html CVE-2014-3505 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890767 SUSE Bug 890767 https://bugzilla.suse.com/905106 SUSE Bug 905106 d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values. CVE-2014-3506 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3506.html CVE-2014-3506 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890768 SUSE Bug 890768 https://bugzilla.suse.com/905106 SUSE Bug 905106 Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function. CVE-2014-3507 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3507.html CVE-2014-3507 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890769 SUSE Bug 890769 https://bugzilla.suse.com/905106 SUSE Bug 905106 The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of '\0' characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions. CVE-2014-3508 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3508.html CVE-2014-3508 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/950708 SUSE Bug 950708 Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data. CVE-2014-3509 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3509.html CVE-2014-3509 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890766 SUSE Bug 890766 The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite. CVE-2014-3510 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3510.html CVE-2014-3510 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890764 SUSE Bug 890764 https://bugzilla.suse.com/890770 SUSE Bug 890770 https://bugzilla.suse.com/905106 SUSE Bug 905106 The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue. CVE-2014-3511 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3511.html CVE-2014-3511 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890771 SUSE Bug 890771 Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter. CVE-2014-3512 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3512.html CVE-2014-3512 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890772 SUSE Bug 890772 Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message. CVE-2014-3513 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3513.html CVE-2014-3513 https://bugzilla.suse.com/901277 SUSE Bug 901277 Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure. CVE-2014-3567 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3567.html CVE-2014-3567 https://bugzilla.suse.com/877506 SUSE Bug 877506 https://bugzilla.suse.com/901277 SUSE Bug 901277 https://bugzilla.suse.com/905106 SUSE Bug 905106 OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c. CVE-2014-3568 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3568.html CVE-2014-3568 https://bugzilla.suse.com/901277 SUSE Bug 901277 https://bugzilla.suse.com/905106 SUSE Bug 905106 https://bugzilla.suse.com/911399 SUSE Bug 911399 https://bugzilla.suse.com/986238 SUSE Bug 986238 The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix. CVE-2014-3569 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 5.7 AV:N/AC:M/Au:M/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3569.html CVE-2014-3569 https://bugzilla.suse.com/911399 SUSE Bug 911399 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/986238 SUSE Bug 986238 The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c. CVE-2014-3570 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3570.html CVE-2014-3570 https://bugzilla.suse.com/912296 SUSE Bug 912296 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/944456 SUSE Bug 944456 OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c. CVE-2014-3571 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3571.html CVE-2014-3571 https://bugzilla.suse.com/912294 SUSE Bug 912294 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message. CVE-2014-3572 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3572.html CVE-2014-3572 https://bugzilla.suse.com/912015 SUSE Bug 912015 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client. CVE-2014-5139 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5139.html CVE-2014-5139 https://bugzilla.suse.com/886831 SUSE Bug 886831 https://bugzilla.suse.com/890759 SUSE Bug 890759 https://bugzilla.suse.com/890765 SUSE Bug 890765 OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate's unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c. CVE-2014-8275 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8275.html CVE-2014-8275 https://bugzilla.suse.com/912018 SUSE Bug 912018 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the "FREAK" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations. CVE-2015-0204 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0204.html CVE-2015-0204 https://bugzilla.suse.com/912014 SUSE Bug 912014 https://bugzilla.suse.com/920482 SUSE Bug 920482 https://bugzilla.suse.com/920484 SUSE Bug 920484 https://bugzilla.suse.com/927591 SUSE Bug 927591 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/936787 SUSE Bug 936787 https://bugzilla.suse.com/952088 SUSE Bug 952088 The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support. CVE-2015-0205 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0205.html CVE-2015-0205 https://bugzilla.suse.com/912293 SUSE Bug 912293 https://bugzilla.suse.com/915848 SUSE Bug 915848 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection. CVE-2015-0206 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0206.html CVE-2015-0206 https://bugzilla.suse.com/912292 SUSE Bug 912292 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/937891 SUSE Bug 937891 Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import. CVE-2015-0209 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0209.html CVE-2015-0209 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature. CVE-2015-0286 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0286.html CVE-2015-0286 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922496 SUSE Bug 922496 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/951391 SUSE Bug 951391 The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse. CVE-2015-0287 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0287.html CVE-2015-0287 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922499 SUSE Bug 922499 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/968888 SUSE Bug 968888 https://bugzilla.suse.com/991722 SUSE Bug 991722 The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key. CVE-2015-0288 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0288.html CVE-2015-0288 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/920236 SUSE Bug 920236 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/951391 SUSE Bug 951391 The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c. CVE-2015-0289 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0289.html CVE-2015-0289 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922500 SUSE Bug 922500 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message. CVE-2015-0293 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0293.html CVE-2015-0293 https://bugzilla.suse.com/919648 SUSE Bug 919648 https://bugzilla.suse.com/922488 SUSE Bug 922488 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968051 SUSE Bug 968051 https://bugzilla.suse.com/968053 SUSE Bug 968053 https://bugzilla.suse.com/986238 SUSE Bug 986238 The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication. CVE-2015-1788 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1788.html CVE-2015-1788 https://bugzilla.suse.com/934487 SUSE Bug 934487 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/938432 SUSE Bug 938432 The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback. CVE-2015-1789 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1789.html CVE-2015-1789 https://bugzilla.suse.com/934489 SUSE Bug 934489 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/938432 SUSE Bug 938432 https://bugzilla.suse.com/951391 SUSE Bug 951391 The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data. CVE-2015-1790 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1790.html CVE-2015-1790 https://bugzilla.suse.com/934491 SUSE Bug 934491 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/936586 SUSE Bug 936586 https://bugzilla.suse.com/938432 SUSE Bug 938432 Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier. CVE-2015-1791 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1791.html CVE-2015-1791 https://bugzilla.suse.com/933911 SUSE Bug 933911 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/986238 SUSE Bug 986238 https://bugzilla.suse.com/989464 SUSE Bug 989464 The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function. CVE-2015-1792 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1792.html CVE-2015-1792 https://bugzilla.suse.com/934493 SUSE Bug 934493 https://bugzilla.suse.com/934666 SUSE Bug 934666 https://bugzilla.suse.com/937891 SUSE Bug 937891 https://bugzilla.suse.com/986238 SUSE Bug 986238 The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate. CVE-2015-1793 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1793.html CVE-2015-1793 https://bugzilla.suse.com/936746 SUSE Bug 936746 https://bugzilla.suse.com/937637 SUSE Bug 937637 https://bugzilla.suse.com/951391 SUSE Bug 951391 The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message. CVE-2015-1794 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1794.html CVE-2015-1794 https://bugzilla.suse.com/957984 SUSE Bug 957984 The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite. CVE-2015-3193 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3193.html CVE-2015-3193 https://bugzilla.suse.com/1022086 SUSE Bug 1022086 https://bugzilla.suse.com/1066242 SUSE Bug 1066242 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/957814 SUSE Bug 957814 https://bugzilla.suse.com/960151 SUSE Bug 960151 https://bugzilla.suse.com/990370 SUSE Bug 990370 crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter. CVE-2015-3194 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3194.html CVE-2015-3194 https://bugzilla.suse.com/957812 SUSE Bug 957812 https://bugzilla.suse.com/957815 SUSE Bug 957815 https://bugzilla.suse.com/958768 SUSE Bug 958768 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/990370 SUSE Bug 990370 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. CVE-2015-3195 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3195.html CVE-2015-3195 https://bugzilla.suse.com/923755 SUSE Bug 923755 https://bugzilla.suse.com/957812 SUSE Bug 957812 https://bugzilla.suse.com/957815 SUSE Bug 957815 https://bugzilla.suse.com/958768 SUSE Bug 958768 https://bugzilla.suse.com/963977 SUSE Bug 963977 https://bugzilla.suse.com/986238 SUSE Bug 986238 ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message. CVE-2015-3196 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3196.html CVE-2015-3196 https://bugzilla.suse.com/957813 SUSE Bug 957813 ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions. CVE-2015-3197 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3197.html CVE-2015-3197 https://bugzilla.suse.com/963410 SUSE Bug 963410 https://bugzilla.suse.com/963415 SUSE Bug 963415 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968046 SUSE Bug 968046 The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file. CVE-2016-0701 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important 7.1 AV:N/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0701.html CVE-2016-0701 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/1176331 SUSE Bug 1176331 https://bugzilla.suse.com/1195379 SUSE Bug 1195379 https://bugzilla.suse.com/963410 SUSE Bug 963410 https://bugzilla.suse.com/963413 SUSE Bug 963413 The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a "CacheBleed" attack. CVE-2016-0702 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0702.html CVE-2016-0702 https://bugzilla.suse.com/1007806 SUSE Bug 1007806 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968050 SUSE Bug 968050 https://bugzilla.suse.com/971238 SUSE Bug 971238 https://bugzilla.suse.com/990370 SUSE Bug 990370 Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key. CVE-2016-0705 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0705.html CVE-2016-0705 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968047 SUSE Bug 968047 https://bugzilla.suse.com/971238 SUSE Bug 971238 https://bugzilla.suse.com/976341 SUSE Bug 976341 Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c. CVE-2016-0797 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0797.html CVE-2016-0797 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968048 SUSE Bug 968048 https://bugzilla.suse.com/990370 SUSE Bug 990370 Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c. CVE-2016-0798 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0798.html CVE-2016-0798 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968265 SUSE Bug 968265 The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a "DROWN" attack. CVE-2016-0800 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0800.html CVE-2016-0800 https://bugzilla.suse.com/1106871 SUSE Bug 1106871 https://bugzilla.suse.com/961377 SUSE Bug 961377 https://bugzilla.suse.com/968044 SUSE Bug 968044 https://bugzilla.suse.com/968046 SUSE Bug 968046 https://bugzilla.suse.com/968888 SUSE Bug 968888 https://bugzilla.suse.com/969591 SUSE Bug 969591 https://bugzilla.suse.com/979060 SUSE Bug 979060 Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data. CVE-2016-2105 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2105.html CVE-2016-2105 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977614 SUSE Bug 977614 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/989902 SUSE Bug 989902 https://bugzilla.suse.com/990369 SUSE Bug 990369 https://bugzilla.suse.com/990370 SUSE Bug 990370 Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data. CVE-2016-2106 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2106.html CVE-2016-2106 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977615 SUSE Bug 977615 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/979279 SUSE Bug 979279 https://bugzilla.suse.com/990369 SUSE Bug 990369 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169. CVE-2016-2107 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important 7.1 AV:N/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2107.html CVE-2016-2107 https://bugzilla.suse.com/976942 SUSE Bug 976942 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977616 SUSE Bug 977616 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/990369 SUSE Bug 990369 https://bugzilla.suse.com/990370 SUSE Bug 990370 The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding. CVE-2016-2109 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2109.html CVE-2016-2109 https://bugzilla.suse.com/1015243 SUSE Bug 1015243 https://bugzilla.suse.com/976942 SUSE Bug 976942 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/990369 SUSE Bug 990369 The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data. CVE-2016-2176 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2176.html CVE-2016-2176 https://bugzilla.suse.com/978224 SUSE Bug 978224 https://bugzilla.suse.com/990369 SUSE Bug 990369 OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c. CVE-2016-2177 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2177.html CVE-2016-2177 https://bugzilla.suse.com/982575 SUSE Bug 982575 https://bugzilla.suse.com/999075 SUSE Bug 999075 https://bugzilla.suse.com/999665 SUSE Bug 999665 The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack. CVE-2016-2178 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 1.2 AV:L/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2178.html CVE-2016-2178 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/983249 SUSE Bug 983249 https://bugzilla.suse.com/983519 SUSE Bug 983519 https://bugzilla.suse.com/999665 SUSE Bug 999665 The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service (memory consumption) by maintaining many crafted DTLS sessions simultaneously, related to d1_lib.c, statem_dtls.c, statem_lib.c, and statem_srvr.c. CVE-2016-2179 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2179.html CVE-2016-2179 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/994844 SUSE Bug 994844 https://bugzilla.suse.com/999665 SUSE Bug 999665 The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the "openssl ts" command. CVE-2016-2180 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2180.html CVE-2016-2180 https://bugzilla.suse.com/1003811 SUSE Bug 1003811 https://bugzilla.suse.com/990419 SUSE Bug 990419 https://bugzilla.suse.com/999665 SUSE Bug 999665 The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service (false-positive packet drops) via spoofed DTLS records, related to rec_layer_d1.c and ssl3_record.c. CVE-2016-2181 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2181.html CVE-2016-2181 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/994749 SUSE Bug 994749 https://bugzilla.suse.com/994844 SUSE Bug 994844 https://bugzilla.suse.com/999665 SUSE Bug 999665 The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors. CVE-2016-2182 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 3.6 AV:N/AC:H/Au:S/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2182.html CVE-2016-2182 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/993819 SUSE Bug 993819 https://bugzilla.suse.com/994844 SUSE Bug 994844 https://bugzilla.suse.com/995959 SUSE Bug 995959 https://bugzilla.suse.com/999665 SUSE Bug 999665 The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a "Sweet32" attack. CVE-2016-2183 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2183.html CVE-2016-2183 https://bugzilla.suse.com/1001912 SUSE Bug 1001912 https://bugzilla.suse.com/1024218 SUSE Bug 1024218 https://bugzilla.suse.com/1027038 SUSE Bug 1027038 https://bugzilla.suse.com/1034689 SUSE Bug 1034689 https://bugzilla.suse.com/1056614 SUSE Bug 1056614 https://bugzilla.suse.com/1171693 SUSE Bug 1171693 https://bugzilla.suse.com/994844 SUSE Bug 994844 https://bugzilla.suse.com/995359 SUSE Bug 995359 The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short. CVE-2016-6302 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6302.html CVE-2016-6302 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/994844 SUSE Bug 994844 https://bugzilla.suse.com/995324 SUSE Bug 995324 https://bugzilla.suse.com/999665 SUSE Bug 999665 Integer overflow in the MDC2_Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors. CVE-2016-6303 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6303.html CVE-2016-6303 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/994844 SUSE Bug 994844 https://bugzilla.suse.com/995377 SUSE Bug 995377 https://bugzilla.suse.com/999665 SUSE Bug 999665 Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions. CVE-2016-6304 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6304.html CVE-2016-6304 https://bugzilla.suse.com/1001706 SUSE Bug 1001706 https://bugzilla.suse.com/1003811 SUSE Bug 1003811 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/1005579 SUSE Bug 1005579 https://bugzilla.suse.com/1021375 SUSE Bug 1021375 https://bugzilla.suse.com/999665 SUSE Bug 999665 https://bugzilla.suse.com/999666 SUSE Bug 999666 The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c. CVE-2016-6306 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6306.html CVE-2016-6306 https://bugzilla.suse.com/1004104 SUSE Bug 1004104 https://bugzilla.suse.com/999665 SUSE Bug 999665 https://bugzilla.suse.com/999668 SUSE Bug 999668 crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation. CVE-2016-7052 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7052.html CVE-2016-7052 https://bugzilla.suse.com/1001148 SUSE Bug 1001148 There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker's direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected. CVE-2016-7055 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7055.html CVE-2016-7055 https://bugzilla.suse.com/1009528 SUSE Bug 1009528 https://bugzilla.suse.com/1021641 SUSE Bug 1021641 A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys. CVE-2016-7056 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 4.9 AV:L/AC:L/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7056.html CVE-2016-7056 https://bugzilla.suse.com/1005878 SUSE Bug 1005878 https://bugzilla.suse.com/1019334 SUSE Bug 1019334 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resulting in a crash. For OpenSSL 1.1.0, the crash can be triggered when using CHACHA20/POLY1305; users should upgrade to 1.1.0d. For Openssl 1.0.2, the crash can be triggered when using RC4-MD5; users who have not disabled that algorithm should update to 1.0.2k. CVE-2017-3731 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3731.html CVE-2017-3731 https://bugzilla.suse.com/1021641 SUSE Bug 1021641 https://bugzilla.suse.com/1022085 SUSE Bug 1022085 https://bugzilla.suse.com/1064118 SUSE Bug 1064118 https://bugzilla.suse.com/1064119 SUSE Bug 1064119 There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem. CVE-2017-3732 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3732.html CVE-2017-3732 https://bugzilla.suse.com/1021641 SUSE Bug 1021641 https://bugzilla.suse.com/1022086 SUSE Bug 1022086 https://bugzilla.suse.com/1049418 SUSE Bug 1049418 https://bugzilla.suse.com/1049421 SUSE Bug 1049421 https://bugzilla.suse.com/1049422 SUSE Bug 1049422 https://bugzilla.suse.com/1066242 SUSE Bug 1066242 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/957814 SUSE Bug 957814 While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g. CVE-2017-3735 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3735.html CVE-2017-3735 https://bugzilla.suse.com/1056058 SUSE Bug 1056058 There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen. CVE-2017-3736 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate 7.1 AV:N/AC:H/Au:N/C:C/I:C/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3736.html CVE-2017-3736 https://bugzilla.suse.com/1066242 SUSE Bug 1066242 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/1076369 SUSE Bug 1076369 https://bugzilla.suse.com/957814 SUSE Bug 957814 There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository. CVE-2017-3738 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 low 5.4 AV:N/AC:H/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-3738.html CVE-2017-3738 https://bugzilla.suse.com/1071906 SUSE Bug 1071906 https://bugzilla.suse.com/1097757 SUSE Bug 1097757 During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2-1.0.2o). CVE-2018-0732 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-0732.html CVE-2018-0732 https://bugzilla.suse.com/1077628 SUSE Bug 1077628 https://bugzilla.suse.com/1097158 SUSE Bug 1097158 https://bugzilla.suse.com/1099502 SUSE Bug 1099502 https://bugzilla.suse.com/1106692 SUSE Bug 1106692 https://bugzilla.suse.com/1108542 SUSE Bug 1108542 https://bugzilla.suse.com/1110163 SUSE Bug 1110163 https://bugzilla.suse.com/1112097 SUSE Bug 1112097 https://bugzilla.suse.com/1122198 SUSE Bug 1122198 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p). CVE-2018-0734 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-0734.html CVE-2018-0734 https://bugzilla.suse.com/1113534 SUSE Bug 1113534 https://bugzilla.suse.com/1113652 SUSE Bug 1113652 https://bugzilla.suse.com/1113742 SUSE Bug 1113742 https://bugzilla.suse.com/1122198 SUSE Bug 1122198 https://bugzilla.suse.com/1122212 SUSE Bug 1122212 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.1.1a (Affected 1.1.1). CVE-2018-0735 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-0735.html CVE-2018-0735 https://bugzilla.suse.com/1113534 SUSE Bug 1113534 https://bugzilla.suse.com/1113651 SUSE Bug 1113651 The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o). CVE-2018-0737 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-0737.html CVE-2018-0737 https://bugzilla.suse.com/1089039 SUSE Bug 1089039 https://bugzilla.suse.com/1089041 SUSE Bug 1089041 https://bugzilla.suse.com/1089044 SUSE Bug 1089044 https://bugzilla.suse.com/1089045 SUSE Bug 1089045 https://bugzilla.suse.com/1108542 SUSE Bug 1108542 https://bugzilla.suse.com/1123780 SUSE Bug 1123780 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 Constructed ASN.1 types with a recursive definition (such as can be found in PKCS7) could eventually exceed the stack given malicious input with excessive recursion. This could result in a Denial Of Service attack. There are no such structures used within SSL/TLS that come from untrusted sources so this is considered safe. Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g). Fixed in OpenSSL 1.0.2o (Affected 1.0.2b-1.0.2n). CVE-2018-0739 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-0739.html CVE-2018-0739 https://bugzilla.suse.com/1087102 SUSE Bug 1087102 https://bugzilla.suse.com/1089997 SUSE Bug 1089997 https://bugzilla.suse.com/1094291 SUSE Bug 1094291 https://bugzilla.suse.com/1108542 SUSE Bug 1108542 ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value (IV) should be 96 bits (12 bytes). OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also incorrectly allows a nonce to be set of up to 16 bytes. In this case only the last 12 bytes are significant and any additional leading bytes are ignored. It is a requirement of using this cipher that nonce values are unique. Messages encrypted using a reused nonce value are susceptible to serious confidentiality and integrity attacks. If an application changes the default nonce length to be longer than 12 bytes and then makes a change to the leading bytes of the nonce expecting the new value to be a new unique nonce then such an application could inadvertently encrypt messages with a reused nonce. Additionally the ignored bytes in a long nonce are not covered by the integrity guarantee of this cipher. Any application that relies on the integrity of these ignored leading bytes of a long nonce may be further affected. Any OpenSSL internal use of this cipher, including in SSL/TLS, is safe because no such use sets such a long nonce value. However user applications that use this cipher directly and set a non-default nonce length to be longer than 12 bytes may be vulnerable. OpenSSL versions 1.1.1 and 1.1.0 are affected by this issue. Due to the limited scope of affected deployments this has been assessed as low severity and therefore we are not creating new releases at this time. Fixed in OpenSSL 1.1.1c (Affected 1.1.1-1.1.1b). Fixed in OpenSSL 1.1.0k (Affected 1.1.0-1.1.0j). CVE-2019-1543 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1543.html CVE-2019-1543 https://bugzilla.suse.com/1128189 SUSE Bug 1128189 https://bugzilla.suse.com/1141801 SUSE Bug 1141801 https://bugzilla.suse.com/1154162 SUSE Bug 1154162 Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s). CVE-2019-1547 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1547.html CVE-2019-1547 https://bugzilla.suse.com/1150003 SUSE Bug 1150003 https://bugzilla.suse.com/1154162 SUSE Bug 1154162 https://bugzilla.suse.com/1154166 SUSE Bug 1154166 https://bugzilla.suse.com/1156430 SUSE Bug 1156430 https://bugzilla.suse.com/1161085 SUSE Bug 1161085 https://bugzilla.suse.com/1205621 SUSE Bug 1205621 OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG state. However this protection was not being used in the default case. A partial mitigation for this issue is that the output from a high precision timer is mixed into the RNG state so the likelihood of a parent and child process sharing state is significantly reduced. If an application already calls OPENSSL_init_crypto() explicitly using OPENSSL_INIT_ATFORK then this problem does not occur at all. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). CVE-2019-1549 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1549.html CVE-2019-1549 https://bugzilla.suse.com/1150247 SUSE Bug 1150247 https://bugzilla.suse.com/1154162 SUSE Bug 1154162 https://bugzilla.suse.com/1205621 SUSE Bug 1205621 There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway. Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME. Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d). Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t). CVE-2019-1551 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1551.html CVE-2019-1551 https://bugzilla.suse.com/1158809 SUSE Bug 1158809 https://bugzilla.suse.com/1205621 SUSE Bug 1205621 In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted with the public RSA key, using a Bleichenbacher padding oracle attack. Applications are not affected if they use a certificate together with the private RSA key to the CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info to decrypt. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s). CVE-2019-1563 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1563.html CVE-2019-1563 https://bugzilla.suse.com/1150250 SUSE Bug 1150250 https://bugzilla.suse.com/1154162 SUSE Bug 1154162 https://bugzilla.suse.com/1156430 SUSE Bug 1156430 https://bugzilla.suse.com/1205621 SUSE Bug 1205621 Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL versions prior to 1.1.1d. Fixed in OpenSSL 1.1.1g (Affected 1.1.1d-1.1.1f). CVE-2020-1967 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-1967.html CVE-2020-1967 https://bugzilla.suse.com/1169407 SUSE Bug 1169407 The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This function behaves incorrectly when both GENERAL_NAMEs contain an EDIPARTYNAME. A NULL pointer dereference and a crash may occur leading to a possible denial of service attack. OpenSSL itself uses the GENERAL_NAME_cmp function for two purposes: 1) Comparing CRL distribution point names between an available CRL and a CRL distribution point embedded in an X509 certificate 2) When verifying that a timestamp response token signer matches the timestamp authority name (exposed via the API functions TS_RESP_verify_response and TS_RESP_verify_token) If an attacker can control both items being compared then that attacker could trigger a crash. For example if the attacker can trick a client or server into checking a malicious certificate against a malicious CRL then this may occur. Note that some applications automatically download CRLs based on a URL embedded in a certificate. This checking happens prior to the signatures on the certificate and CRL being verified. OpenSSL's s_server, s_client and verify tools have support for the "-crl_download" option which implements automatic CRL downloading and this attack has been demonstrated to work against those tools. Note that an unrelated bug means that affected versions of OpenSSL cannot parse or construct correct encodings of EDIPARTYNAME. However it is possible to construct a malformed EDIPARTYNAME that OpenSSL's parser will accept and hence trigger this attack. All OpenSSL 1.1.1 and 1.0.2 versions are affected by this issue. Other OpenSSL releases are out of support and have not been checked. Fixed in OpenSSL 1.1.1i (Affected 1.1.1-1.1.1h). Fixed in OpenSSL 1.0.2x (Affected 1.0.2-1.0.2w). CVE-2020-1971 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-1971.html CVE-2020-1971 https://bugzilla.suse.com/1179491 SUSE Bug 1179491 https://bugzilla.suse.com/1196179 SUSE Bug 1196179 https://bugzilla.suse.com/1199303 SUSE Bug 1199303 Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x). CVE-2021-23840 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-23840.html CVE-2021-23840 https://bugzilla.suse.com/1182333 SUSE Bug 1182333 https://bugzilla.suse.com/1187743 SUSE Bug 1187743 https://bugzilla.suse.com/1214334 SUSE Bug 1214334 https://bugzilla.suse.com/1225628 SUSE Bug 1225628 The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x). CVE-2021-23841 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-23841.html CVE-2021-23841 https://bugzilla.suse.com/1182331 SUSE Bug 1182331 https://bugzilla.suse.com/1187743 SUSE Bug 1187743 https://bugzilla.suse.com/1214334 SUSE Bug 1214334 An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j). CVE-2021-3449 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3449.html CVE-2021-3449 https://bugzilla.suse.com/1183852 SUSE Bug 1183852 The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a "purpose" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named "purpose" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j). CVE-2021-3450 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3450.html CVE-2021-3450 https://bugzilla.suse.com/1183851 SUSE Bug 1183851 https://bugzilla.suse.com/1188549 SUSE Bug 1188549 https://bugzilla.suse.com/1225628 SUSE Bug 1225628 In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" parameter is populated with the buffer size required to hold the decrypted plaintext. The application can then allocate a sufficiently sized buffer and call EVP_PKEY_decrypt() again, but this time passing a non-NULL value for the "out" parameter. A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when EVP_PKEY_decrypt() is called by the application a second time with a buffer that is too small. A malicious attacker who is able present SM2 content for decryption to an application could cause attacker chosen data to overflow the buffer by up to a maximum of 62 bytes altering the contents of other data held after the buffer, possibly changing application behaviour or causing the application to crash. The location of the buffer is application dependent but is typically heap allocated. Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). CVE-2021-3711 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3711.html CVE-2021-3711 https://bugzilla.suse.com/1189520 SUSE Bug 1189520 https://bugzilla.suse.com/1190129 SUSE Bug 1190129 https://bugzilla.suse.com/1192100 SUSE Bug 1192100 https://bugzilla.suse.com/1205663 SUSE Bug 1205663 https://bugzilla.suse.com/1225628 SUSE Bug 1225628 ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y). CVE-2021-3712 openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2 openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2 openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3712.html CVE-2021-3712 https://bugzilla.suse.com/1189521 SUSE Bug 1189521 https://bugzilla.suse.com/1190129 SUSE Bug 1190129 https://bugzilla.suse.com/1191640 SUSE Bug 1191640 https://bugzilla.suse.com/1192100 SUSE Bug 1192100 https://bugzilla.suse.com/1192787 SUSE Bug 1192787 https://bugzilla.suse.com/1194948 SUSE Bug 1194948 https://bugzilla.suse.com/1225628 SUSE Bug 1225628