Security update for bouncycastle SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:1539-1 Final 1 1 2024-05-07T07:23:51Z current 2024-05-07T07:23:51Z 2024-05-07T07:23:51Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bouncycastle This update for bouncycastle fixes the following issues: Update to version 1.78.1, including fixes for: - CVE-2024-30171: Fixed timing side-channel attacks against RSA decryption (both PKCS#1v1.5 and OAEP). (bsc#1223252) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container containers/apache-pulsar:3.3-2024-1539,SUSE-2024-1539,SUSE-SLE-Module-Development-Tools-15-SP5-2024-1539,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1539,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1539,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1539,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1539,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1539,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1539,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1539,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1539,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1539,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1539,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1539,SUSE-Storage-7.1-2024-1539,openSUSE-SLE-15.5-2024-1539 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20241539-1/ Link for SUSE-SU-2024:1539-1 https://lists.suse.com/pipermail/sle-security-updates/2024-May/018474.html E-Mail link for SUSE-SU-2024:1539-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1223252 SUSE Bug 1223252 https://www.suse.com/security/cve/CVE-2024-30171/ SUSE CVE CVE-2024-30171 page Container containers/apache-pulsar:3.3 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Module for Development Tools 15 SP5 SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 openSUSE Leap 15.5 bouncycastle-1.78.1-150200.3.29.1 bouncycastle-pkix-1.78.1-150200.3.29.1 bouncycastle-util-1.78.1-150200.3.29.1 bouncycastle-javadoc-1.78.1-150200.3.29.1 bouncycastle-jmail-1.78.1-150200.3.29.1 bouncycastle-mail-1.78.1-150200.3.29.1 bouncycastle-pg-1.78.1-150200.3.29.1 bouncycastle-tls-1.78.1-150200.3.29.1 bouncycastle-1.78.1-150200.3.29.1 as a component of Container containers/apache-pulsar:3.3 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of Container containers/apache-pulsar:3.3 bouncycastle-util-1.78.1-150200.3.29.1 as a component of Container containers/apache-pulsar:3.3 bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Enterprise Storage 7.1 bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Enterprise Storage 7.1 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Enterprise Storage 7.1 bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Enterprise Storage 7.1 bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP5 bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP5 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP5 bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP5 bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 bouncycastle-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 bouncycastle-pg-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 bouncycastle-util-1.78.1-150200.3.29.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 bouncycastle-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-javadoc-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-jmail-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-mail-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-pg-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-pkix-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-tls-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 bouncycastle-util-1.78.1-150200.3.29.1 as a component of openSUSE Leap 15.5 An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception processing. CVE-2024-30171 Container containers/apache-pulsar:3.3:bouncycastle-1.78.1-150200.3.29.1 Container containers/apache-pulsar:3.3:bouncycastle-pkix-1.78.1-150200.3.29.1 Container containers/apache-pulsar:3.3:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Enterprise Storage 7.1:bouncycastle-1.78.1-150200.3.29.1 SUSE Enterprise Storage 7.1:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Enterprise Storage 7.1:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Enterprise Storage 7.1:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Module for Development Tools 15 SP5:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Module for Development Tools 15 SP5:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Module for Development Tools 15 SP5:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Module for Development Tools 15 SP5:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP2-LTSS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP2-LTSS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP2-LTSS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP2-LTSS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP3-LTSS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP3-LTSS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP3-LTSS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP3-LTSS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP4-LTSS:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP4-LTSS:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP4-LTSS:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server 15 SP4-LTSS:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:bouncycastle-util-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:bouncycastle-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:bouncycastle-pg-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:bouncycastle-pkix-1.78.1-150200.3.29.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:bouncycastle-util-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-javadoc-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-jmail-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-mail-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-pg-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-pkix-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-tls-1.78.1-150200.3.29.1 openSUSE Leap 15.5:bouncycastle-util-1.78.1-150200.3.29.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241539-1/ https://www.suse.com/security/cve/CVE-2024-30171.html CVE-2024-30171 https://bugzilla.suse.com/1223252 SUSE Bug 1223252