SUSE-SU-2023:0309-1 -- SLES openssl-1_1, libopenssl1_1ID: oval:org.secpod.oval:def:89048221 | Date: (C)2023-02-10 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for openssl-1_1 fixes the following issues: - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GENERAL_NAME_cmp for x400Address . - CVE-2023-0215: Fixed use-after-free following BIO_new_NDEF . - CVE-2022-4450: Fixed double free after calling PEM_read_bio_ex . - CVE-2022-4304: Fixed timing Oracle in RSA Decryption .
Platform: |
SUSE Linux Enterprise Server 12 SP5 |
SUSE Linux Enterprise Server 12 SP4 |
Product: |
openssl-1_1 |
libopenssl1_1 |