SUSE-SU-2016:2458-1 -- SLES openssl, libopenssl0_9_8ID: oval:org.secpod.oval:def:89045357 | Date: (C)2021-08-03 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for openssl fixes the following issues: OpenSSL Security Advisory [22 Sep 2016] Severity: High * OCSP Status Request extension unbounded memory growth Severity: Low * Pointer arithmetic undefined behavior * Constant time flag not preserved in DSA signing * DTLS buffered message DoS * DTLS replay protection DoS * OOB write in BN_bn2dec * Birthday attack against 64-bit block ciphers * Malformed SHA512 ticket DoS * OOB write in MDC2_Update * Certificate message OOB reads More information can be found on: https://www.openssl.org/news/secadv/20160922.txt Bugs fixed: * Update expired S/MIME certs * Fix crash in print_notice * Resume reading from /dev/urandom when interrupted by a signal
Platform: |
SUSE Linux Enterprise Server 11 SP4 |
Product: |
openssl |
libopenssl0_9_8 |