SUSE-SU-2018:3866-1 -- SLES openssl, libopensslID: oval:org.secpod.oval:def:89002524 | Date: (C)2021-02-25 (M)2024-01-29 |
Class: PATCH | Family: unix |
This update for openssl fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation . - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses . - Add missing timing side channel patch for DSA signature generation . Non-security issues fixed: - Fixed infinite loop in DSA generation with incorrect parameters .
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
openssl |
libopenssl |