OpenSSL is an implementation of the Secure Socket Layer (SSL v2/3) and Transport Layer Security (TLS v1) protocol. While checking the openssl implementation with a tool-kit from NISCC several errors were revealed most are ASN.1 encoding issues that causes a remote denial-of-service attack on the server side and possibly lead to remote command execution.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 7.3 | i386 | openssl-devel | < 0.9.6b-158 | openssl-devel-0.9.6b-158.i386.rpm |
openSUSE | 8.2 | i586 | openssl | < 0.9.6i-19 | openssl-0.9.6i-19.i586.rpm |
openSUSE | 7.3 | sparc | openssl-doc | < 0.9.6b-90 | openssl-doc-0.9.6b-90.sparc.rpm |
openSUSE | 7.2 | i386 | openssl | < 0.9.6a-83 | openssl-0.9.6a-83.i386.rpm |
openSUSE | 7.3 | i386 | openssl-doc | < 0.9.6b-158 | openssl-doc-0.9.6b-158.i386.rpm |
openSUSE | 7.3 | ppc | openssl-doc | < 0.9.6b-151 | openssl-doc-0.9.6b-151.ppc.rpm |
openSUSE | 8.0 | i386 | openssl-doc | < 0.9.6c-86 | openssl-doc-0.9.6c-86.i386.rpm |
openSUSE | 9.0 | i586 | openssl-devel | < 0.9.7b-71 | openssl-devel-0.9.7b-71.i586.rpm |
openSUSE | 9.0 | i586 | openssl | < 0.9.7b-71 | openssl-0.9.7b-71.i586.rpm |
openSUSE | 8.2 | i586 | openssl-doc | < 0.9.6i-19 | openssl-doc-0.9.6i-19.i586.rpm |