46 matches found
OPENSUSE-SU-2026:11023-1 libopenssl-3-devel-3.5.3-6.1 on GA media
These are all security issues fixed in the libopenssl-3-devel-3.5.3-6.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11125-1 libopenssl-devel-1.1.1l-1.2 on GA media
These are all security issues fixed in the libopenssl-devel-1.1.1l-1.2 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:10271-1 libopenssl-devel-1.0.2j-2.2 on GA media
These are all security issues fixed in the libopenssl-devel-1.0.2j-2.2 package on the GA media of openSUSE Tumbleweed...
SUSE: Security Advisory (SUSE-SU-2022:0854-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2928-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the libopenssl-devel package of the OpenSUSE operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the libopenssl-devel-32bit package of the OpenSUSE operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2010:0965-2)
Multithreaded OpenSSL servers using the TLS server extension are vulnerable to a buffer overrun attack CVE-2010-3864. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libopenssl-devel-3562. The...
openSUSE Security Update : libopenssl-devel (libopenssl-devel-3937)
This update improves the ClientHello handshake message parsing function. Prior to this update is was possible that this function reads beyond the end of a message leading to invalid memory access and a crash. Under some circumstances it was possible that information from the OCSP extensions was...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2010:0951-1)
Specially crafted responses from SSL servers could cause a double-free bug in openssl's client implementation. Malicious servers could exploit that to crash programs use openssl for the SSL connection CVE-2010-2939. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2012:0266-1)
This update of OpenSSL fixes a Denial of Services issue CVE-2012-0050. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libopenssl-devel-5761. The text description of this plugin is C SUSE LLC...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:0634-1)
This update of openssl fixes a timing attack. This attack can be used to obtain the private key of a TLS server whenever ECDSA signatures are used. CVE-2011-1945: CVSS v2 Base Score: 4.3 important AV:N/AC:M/Au:N/C:P/I:N/A:N: Cryptographic Issues CWE-310 %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:0014-1)
Malicious clients could downgrade a connection to a low strength cipher suite on session resumption if the server offers such ciphers CVE-2010-4180. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:0634-1)
This update of openssl fixes a timing attack. This attack can be used to obtain the private key of a TLS server whenever ECDSA signatures are used. CVE-2011-1945: CVSS v2 Base Score: 4.3 important AV:N/AC:M/Au:N/C:P/I:N/A:N: Cryptographic Issues CWE-310 %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : openssl (openSUSE-SU-2014:0635-1)
Fixed bug bnc876282, CVE-2014-0198 openssl: OpenSSL NULL pointer dereference in dossl3write Add file: CVE-2014-0198.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-359. The...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2012:0083-1)
Various security vulnerabilities have been fixed in openssl : - DTLS plaintext recovery attack CVE-2011-4108 - uninitialized SSL 3.0 padding CVE-2011-4576 - malformed RFC 3779 data can cause assertion failures CVE-2011-4577 - SGC restart DoS attack CVE-2011-4619 - invalid GOST parameters DoS atta...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:1144-1)
OpenSSL's internal certificate verification routines could incorrectly accept a CRL whose nextUpdate field is in the past CVE-2011-3207. Server code for ECDH could crash if it received a specially crafted handshake message CVE-2011-3210. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:1144-1)
OpenSSL's internal certificate verification routines could incorrectly accept a CRL whose nextUpdate field is in the past CVE-2011-3207. Server code for ECDH could crash if it received a specially crafted handshake message CVE-2011-3210. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2012:0083-1)
Various security vulnerabilities have been fixed in openssl : - DTLS plaintext recovery attack CVE-2011-4108 - uninitialized SSL 3.0 padding CVE-2011-4576 - malformed RFC 3779 data can cause assertion failures CVE-2011-4577 - SGC restart DoS attack CVE-2011-4619 - invalid GOST parameters DoS atta...
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2010:0965-2)
Multithreaded OpenSSL servers using the TLS server extension are vulnerable to a buffer overrun attack CVE-2010-3864. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libopenssl-devel-3562. The...