Lucene search
SuseOPENSUSE-SU-2016:1238-1HistoryMay 05, 2016 - 1:08 p.m.
Security update for openssl (important)
2016-05-0513:08:31
lists.opensuse.org
23
0.973 High
EPSS
Percentile
99.9%
This update for openssl fixes the following issues:
- CVE-2016-2108: Memory corruption in the ASN.1 encoder (boo#977617)
- CVE-2016-2107: Padding oracle in AES-NI CBC MAC check (boo#977616)
- CVE-2016-2105: EVP_EncodeUpdate overflow (boo#977614)
- CVE-2016-2106: EVP_EncryptUpdate overflow (boo#977615)
- CVE-2016-2109: ASN.1 BIO excessive memory allocation (boo#976942)
- boo#976943: Buffer overrun in ASN1_parse
- boo#977621: Preserve digests for SNI
- boo#958501: Fix openssl enc -non-fips-allow option in FIPS mode
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 13.2 | x86_64 | openssl-debugsource | < 1.0.1k-2.36.1 | openssl-debugsource-1.0.1k-2.36.1.x86_64.rpm |
| openSUSE | 13.2 | x86_64 | openssl-debuginfo | < 1.0.1k-2.36.1 | openssl-debuginfo-1.0.1k-2.36.1.x86_64.rpm |
| openSUSE | 13.2 | x86_64 | libopenssl1_0_0-32bit | < 1.0.1k-2.36.1 | libopenssl1_0_0-32bit-1.0.1k-2.36.1.x86_64.rpm |
| openSUSE | 13.2 | i586 | libopenssl1_0_0 | < 1.0.1k-2.36.1 | libopenssl1_0_0-1.0.1k-2.36.1.i586.rpm |
| openSUSE | 13.2 | i586 | openssl-debuginfo | < 1.0.1k-2.36.1 | openssl-debuginfo-1.0.1k-2.36.1.i586.rpm |
| openSUSE | 13.2 | i586 | openssl-debugsource | < 1.0.1k-2.36.1 | openssl-debugsource-1.0.1k-2.36.1.i586.rpm |
| openSUSE | 13.2 | i586 | openssl | < 1.0.1k-2.36.1 | openssl-1.0.1k-2.36.1.i586.rpm |
| openSUSE | 13.2 | i586 | libopenssl1_0_0-debuginfo | < 1.0.1k-2.36.1 | libopenssl1_0_0-debuginfo-1.0.1k-2.36.1.i586.rpm |
| openSUSE | 13.2 | i586 | libopenssl-devel | < 1.0.1k-2.36.1 | libopenssl-devel-1.0.1k-2.36.1.i586.rpm |
| openSUSE | 13.2 | x86_64 | libopenssl1_0_0-hmac | < 1.0.1k-2.36.1 | libopenssl1_0_0-hmac-1.0.1k-2.36.1.x86_64.rpm |
Related
ibm
ibm
suse
suse
Security update for openssl (important)
2016-05-04 18:09:44
Security update for openssl1 (important)
2016-05-03 22:08:22
Security update for openssl (important)
2016-05-04 16:14:12
openvas
openvas
Debian: Security Advisory (DSA-3566-1)
2016-05-02 00:00:00
openSUSE: Security Advisory for openssl (openSUSE-SU-2016:1238-1)
2016-05-06 00:00:00
Debian Security Advisory DSA 3566-1 (openssl - security update)
2016-05-03 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2016:1233-1)
2016-05-05 00:00:00
SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2016:1228-1)
2016-05-05 00:00:00
openSUSE Security Update : openssl (openSUSE-2016-564)
2016-05-06 00:00:00
osv
osv
openssl - security update
2016-05-03 00:00:00
openssl - security update
2016-05-03 00:00:00
amazon
amazon
Important: openssl
2016-05-03 10:30:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2016-05-03 00:00:00
cloudfoundry
cloudfoundry
USN-2959-1 OpenSSL vulnerabilities | Cloud Foundry
2016-05-06 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerability
2016-05-08 00:22:48
fedora
fedora
[SECURITY] Fedora 24 Update: openssl-1.0.2h-1.fc24
2016-05-07 12:15:14
[SECURITY] Fedora 23 Update: openssl-1.0.2h-1.fc23
2016-05-04 18:54:36
[SECURITY] Fedora 22 Update: openssl-1.0.1k-15.fc22
2016-05-10 17:58:11
fortinet
fortinet
OpenSSL Advisory - May 2016
2016-09-22 00:00:00
huawei
huawei
Security Advisory - Multiple Vulnerabilities in OpenSSL in May 2016
2016-07-06 00:00:00
arista
arista
Security Advisory 0020
2016-05-06 00:00:00
f5
f5
K07538415 : Multiple OpenSSL vulnerabilities
2016-05-04 00:00:00
SOL07538415 - Multiple OpenSSL vulnerabilities
2016-05-03 00:00:00
debian
debian
[SECURITY] [DSA 3566-1] openssl security update
2016-05-03 18:24:21
[SECURITY] [DLA 456-1] openssl security update
2016-05-03 20:53:46
cisco
cisco
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016
2016-05-04 19:30:00
nodejsblog
nodejsblog
OpenSSL updates, 1.0.1t and 1.0.2h
2016-05-02 00:00:00
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2016-05-03 00:00:00
slackware
slackware
[slackware-security] openssl
2016-05-03 21:05:31
oraclelinux
oraclelinux
openssl-fips security update
2016-06-15 00:00:00
openssl security update
2016-05-09 00:00:00
openssl security update
2016-05-13 00:00:00
centos
centos
openssl security update
2016-05-09 08:40:50
openssl security update
2016-05-16 10:25:52
redhat
redhat
(RHSA-2016:0722) Important: openssl security update
2016-05-09 04:44:04
(RHSA-2016:0996) Important: openssl security update
2016-05-10 07:00:21
(RHSA-2016:2073) Important: openssl security update
2016-10-18 06:21:20
symantec
symantec
SA123 : OpenSSL Vulnerabilities 3-May-2016
2016-05-09 08:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.2h-alt1
2016-05-03 00:00:00
Security fix for the ALT Linux 10 package openssl1.1 version 1.0.2h-alt1
2016-05-03 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.2h-alt1
2016-05-04 00:00:00
paloalto
paloalto
OpenSSL Vulnerabilities
2016-09-02 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:17.openssl
2016-05-04 00:00:00
aix
aix
Vulnerabilities in OpenSSL affect AIX
2016-07-12 14:14:43
archlinux
archlinux
openssl: multiple issues
2016-05-04 00:00:00
lib32-openssl: multiple issues
2016-05-04 00:00:00
citrix
citrix
Citrix XenServer 7.2 Multiple Security Updates
2018-03-29 04:00:00
thn
thn
High-Severity OpenSSL Vulnerability allows Hackers to Decrypt HTTPS Traffic
2016-05-04 23:31:00