Lucene search

K
suseSuseOPENSUSE-SU-2012:0083-1
HistoryJan 16, 2012 - 5:08 p.m.

openssl: fixing various security issues (important)

2012-01-1617:08:14
lists.opensuse.org
15

0.185 Low

EPSS

Percentile

96.2%

Various security vulnerabilities have been fixed in openssl:

  • DTLS plaintext recovery attack (CVE-2011-4108)
  • uninitialized SSL 3.0 padding (CVE-2011-4576)
  • malformed RFC 3779 data can cause assertion failures
    (CVE-2011-4577)
  • SGC restart DoS attack (CVE-2011-4619)
  • invalid GOST parameters DoS attack (CVE-2012-0027)