Download
| Alert*
oval:org.secpod.oval:def:89047817
libopenssl-3-devel is installed oval:org.secpod.oval:def:89049244 This update for openssl-3 fixes the following issues: * CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value oval:org.secpod.oval:def:89049239 This update for openssl-3 fixes the following issues: * CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value oval:org.secpod.oval:def:3300295 SUSE Security Update: Security update for openssl-3 oval:org.secpod.oval:def:3301419 Security update for openssl-3 oval:org.secpod.oval:def:89051254 This update for openssl-3 fixes the following issues: * CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service . Bug fixes: * The default /etc/ssl/openssl3.cnf file will include any configuration files that other packages might pl ... oval:org.secpod.oval:def:89051212 This update for openssl-3 fixes the following issues: * CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service . Bug fixes: * The default /etc/ssl/openssl3.cnf file will include any configuration files that other packages might pl ... oval:org.secpod.oval:def:3302454 Security update for openssl-3 oval:org.secpod.oval:def:89051635 This update for openssl-3 fixes the following issues: * CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file . oval:org.secpod.oval:def:3300766 SUSE Security Update: Security update for openssl-3 oval:org.secpod.oval:def:89047815 This update for openssl-3 fixes the following issues: - CVE-2022-2068: Fixed more shell code injection issues in c_rehash. - CVE-2022-1292: Properly sanitise shell metacharacters in c_rehash script. - CVE-2022-1343: Fixed incorrect signature verification in OCSP_basic_verify . - CVE-2022-2097: Fix ... oval:org.secpod.oval:def:89051005 This update for openssl-3 fixes the following issues: * CVE-2023-5363: Incorrect cipher key and IV length processing. * CVE-2023-3817: Add test of DH_check with q = p + 1 oval:org.secpod.oval:def:89051006 This update for openssl-3 fixes the following issues: * CVE-2023-5363: Incorrect cipher key and IV length processing. * CVE-2023-3817: Add test of DH_check with q = p + 1 oval:org.secpod.oval:def:3302021 Security update for openssl-3 oval:org.secpod.oval:def:3301282 SUSE Security Update: Security update for openssl-3 oval:org.secpod.oval:def:89048062 This update for openssl-3 fixes the following issues: - CVE-2022-3996: Fixed X.509 Policy Constraints Double Locking oval:org.secpod.oval:def:3300932 SUSE Security Update: Security update for openssl-3 oval:org.secpod.oval:def:89051467 This update for openssl-3 fixes the following issues: * CVE-2023-6129: Fixed vector register clobbering on PowerPC. * CVE-2023-6237: Fixed excessive time spent checking invalid RSA public keys. * CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file . oval:org.secpod.oval:def:3302410 Security update for openssl-3 oval:org.secpod.oval:def:89051393 This update for openssl-3 fixes the following issues: * CVE-2023-6129: Fixed vector register clobbering on PowerPC. * CVE-2023-6237: Fixed excessive time spent checking invalid RSA public keys oval:org.secpod.oval:def:3302226 Security update for openssl-3 oval:org.secpod.oval:def:89049160 This update for openssl-3 fixes the following issues: * CVE-2023-2975: Fixed AES-SIV implementation ignores empty associated data entries . * CVE-2023-3446: Fixed DH_check excessive time with over sized modulus . oval:org.secpod.oval:def:89049028 This update for openssl-3 fixes the following issues: * CVE-2023-1255: Fixed input buffer over-read in AES-XTS implementation on 64 bit ARM . * CVE-2023-2650: Fixed possible DoS translating ASN.1 object identifiers . oval:org.secpod.oval:def:89049166 This update for openssl-3 fixes the following issues: * CVE-2023-2975: Fixed AES-SIV implementation ignores empty associated data entries . * CVE-2023-3446: Fixed DH_check excessive time with over sized modulus . oval:org.secpod.oval:def:89048722 This update for openssl-3 fixes the following issues: * CVE-2023-0465: Invalid certificate policies in leaf certificates were silently ignored . * CVE-2023-0466: Certificate policy check were not enabled . * Update further expiring certificates that affect tests oval:org.secpod.oval:def:89048942 This update for openssl-3 fixes the following issues: * Update to version 3.0.8 . * CVE-2022-40735: Fixed remote trigger of expensive server-side DHE modular- exponentiation with long exponents in Diffie-Hellman Key Agreement Protocol . * CVE-2023-1255: Fixed input buffer over-read in AES-XTS implem ... oval:org.secpod.oval:def:89051968 This update for openssl-3 fixes the following issues: * CVE-2024-4741: Fixed a use-after-free with SSL_free_buffers oval:org.secpod.oval:def:89051910 This update for openssl-3 fixes the following issues: * CVE-2024-4603: Fixed DSA parameter checks for excessive sizes before validating . oval:org.secpod.oval:def:3302815 Security update for openssl-3 oval:org.secpod.oval:def:3302579 Security update for openssl-3 oval:org.secpod.oval:def:89051874 This update for openssl-3 fixes the following issues: * CVE-2024-2511: Fixed unconstrained session cache growth in TLSv1.3 . oval:org.secpod.oval:def:3302820 Security update for openssl-3 oval:org.secpod.oval:def:89051945 This update for openssl-3 fixes the following issues: * CVE-2024-2511: Fixed unconstrained session cache growth in TLSv1.3 . * CVE-2024-4603: Fixed DSA parameter checks for excessive sizes before validating . oval:org.secpod.oval:def:3302833 Security update for openssl-3 oval:org.secpod.oval:def:89048610 This update for openssl-3 fixes the following issues: * CVE-2023-0464: Fixed excessive Resource Usage Verifying X.509 Policy Constraints . |