Lucene search

K
suseSuseSUSE-SU-2014:0768-1
HistoryJun 07, 2014 - 12:04 a.m.

Security update for OpenSSL (critical)

2014-06-0700:04:15
lists.opensuse.org
68

EPSS

0.974

Percentile

99.9%

OpenSSL was updated to fix the following security vulnerabilities:

   * SSL/TLS MITM vulnerability. (CVE-2014-0224)
   * ECC private key can leak on 32 bit platforms. (CVE-2011-4354)

Further information can be found at
<a href=“http://www.openssl.org/news/secadv_20140605.txt”>http://www.openssl.org/news/secadv_20140605.txt</a>
<<a href=“http://www.openssl.org/news/secadv_20140605.txt”>http://www.openssl.org/news/secadv_20140605.txt</a>> .

Security Issues references:

   * CVE-2014-0224
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224</a>&gt;
   * CVE-2011-4354
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4354">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4354</a>&gt;