SUSE-SU-2018:3866-1 -- SLES openssl, libopenssl| ID: oval:org.secpod.oval:def:89002524 | Date: (C)2021-02-25 (M)2024-01-29 |
| Class: PATCH | Family: unix |
This update for openssl fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation . - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses . - Add missing timing side channel patch for DSA signature generation . Non-security issues fixed: - Fixed infinite loop in DSA generation with incorrect parameters .
| Platform: |
| SUSE Linux Enterprise Server 12 SP3 |
| SUSE Linux Enterprise Server 12 SP2 |
| Product: |
| openssl |
| libopenssl |
