Lucene search

K
suseSuseOPENSUSE-SU-2018:3903-1
HistoryNov 24, 2018 - 6:18 p.m.

Security update for openssl (moderate)

2018-11-2418:18:01
lists.opensuse.org
283

0.003 Low

EPSS

Percentile

65.7%

This update for openssl fixes the following issues:

Security issues fixed:

  • CVE-2018-0734: Fixed timing vulnerability in DSA signature generation
    (bsc#1113652).
  • CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack
    defenses (bsc#1113534).
  • Add missing timing side channel patch for DSA signature generation
    (bsc#1113742).

Non-security issues fixed:

  • Fixed infinite loop in DSA generation with incorrect parameters
    (bsc#1112209).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

0.003 Low

EPSS

Percentile

65.7%

Related for OPENSUSE-SU-2018:3903-1