OpenSSL was updated to fix the following security vulnerabilities:
* SSL/TLS MITM vulnerability. (CVE-2014-0224)
* ECC private key can leak on 32 bit platforms. (CVE-2011-4354)
Further information can be found at
<a href=“http://www.openssl.org/news/secadv_20140605.txt”>http://www.openssl.org/news/secadv_20140605.txt</a>
<<a href=“http://www.openssl.org/news/secadv_20140605.txt”>http://www.openssl.org/news/secadv_20140605.txt</a>> .
Security Issues references:
* CVE-2014-0224
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224</a>>
* CVE-2011-4354
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4354">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4354</a>>
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
SUSE CORE | 9 | x86_64 | openssl-doc | < 0.9.7d-15.50 | openssl-doc-0.9.7d-15.50.x86_64.rpm |
SUSE CORE | 9 | x86_64 | openssl-devel-32bit | < 9-201406041231 | openssl-devel-32bit-9-201406041231.x86_64.rpm |
SUSE CORE | 9 | s390 | openssl | < 0.9.7d-15.50 | openssl-0.9.7d-15.50.s390.rpm |
SUSE CORE | 9 | s390x | openssl-32bit | < 9-201406060130 | openssl-32bit-9-201406060130.s390x.rpm |
SUSE CORE | 9 | x86_64 | openssl-32bit | < 9-201406041231 | openssl-32bit-9-201406041231.x86_64.rpm |
SUSE CORE | 9 | i586 | openssl-devel | < 0.9.7d-15.50 | openssl-devel-0.9.7d-15.50.i586.rpm |
SUSE CORE | 9 | s390 | openssl-doc | < 0.9.7d-15.50 | openssl-doc-0.9.7d-15.50.s390.rpm |
SUSE CORE | 9 | s390x | openssl-devel-32bit | < 9-201406060130 | openssl-devel-32bit-9-201406060130.s390x.rpm |
SUSE CORE | 9 | i586 | openssl-doc | < 0.9.7d-15.50 | openssl-doc-0.9.7d-15.50.i586.rpm |
SUSE CORE | 9 | s390x | openssl-doc | < 0.9.7d-15.50 | openssl-doc-0.9.7d-15.50.s390x.rpm |