SUSE CVE-2018-0737

🗓️ 15 Feb 2023 04:34:45Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

CVE-2018-0737: OpenSSL RSA key generation vulnerable to cache timing attack; private key recoverable.

Reporter	Title	Published	Views	Family All 300
IBM Security Bulletins	Security Bulletin: IBM Security Proventia Network Active Bypass is affected by openssl vulnerabilities (CVE-2018-0737)	27 Mar 201907:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM API Connect has addressed multiple vulnerabilities in Developer Portal's dependencies - Cumulative list from June 28, 2018 to December 13, 2018	28 Jan 201917:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Spectrum Protect Plus (CVE-2018-0739, CVE-2018-0737, CVE-2018-0732)	27 Jun 201918:50	–	ibm
IBM Security Bulletins	Security Bulletin: WebSphere DataPower Appliances is affected by a vulnerability in OpenSSL (CVE-2018-0737)	7 Sep 201814:44	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in GNU OpenSSL affect IBM Netezza Analytics	18 Oct 201903:36	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow and Business Process Manager (BPM)	14 Sep 202215:02	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in NTP, OpenSSL and Intel CPU's affect IBM Netezza Firmware Diagnostics.	18 Oct 201903:10	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities were identified in Node.js that affect IBM Cloud App Management V2018	15 Feb 201911:35	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple open source vulnerabilities affect IBM PureApplication System	10 Jun 201907:30	–	ibm
IBM Security Bulletins	Security Bulletin: Mutiple Vulnerabilities in OpenSSL affects IBM Watson Studio Local	20 Dec 201913:51	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Desktop	12.4	any	libopenssl-1_0_0-devel	1.0.2p-2.11	libopenssl-1_0_0-devel-1.0.2p-2.11.noarch.rpm
SUSE Linux Enterprise Server	12.4	any	libopenssl-1_0_0-devel	1.0.2p-2.11	libopenssl-1_0_0-devel-1.0.2p-2.11.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	12.4	any	libopenssl-1_0_0-devel	1.0.2p-2.11	libopenssl-1_0_0-devel-1.0.2p-2.11.noarch.rpm
SUSE Linux Enterprise Server	12.5	any	libopenssl-1_0_0-devel	1.0.2p-3.11.1	libopenssl-1_0_0-devel-1.0.2p-3.11.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	12.5	any	libopenssl-1_0_0-devel	1.0.2p-3.11.1	libopenssl-1_0_0-devel-1.0.2p-3.11.1.noarch.rpm
SUSE Linux Enterprise Server	15	any	libopenssl-1_0_0-devel	1.0.2p-3.8.1	libopenssl-1_0_0-devel-1.0.2p-3.8.1.noarch.rpm
SUSE Linux Enterprise Server	15.1	any	libopenssl-1_0_0-devel	1.0.2p-3.8.1	libopenssl-1_0_0-devel-1.0.2p-3.8.1.noarch.rpm
SUSE Linux Enterprise Server	15.2	any	libopenssl-1_0_0-devel	1.0.2p-3.8.1	libopenssl-1_0_0-devel-1.0.2p-3.8.1.noarch.rpm
SUSE Linux Enterprise Server	15.3	any	libopenssl-1_0_0-devel	1.0.2p-3.8.1	libopenssl-1_0_0-devel-1.0.2p-3.8.1.noarch.rpm
SUSE Linux Enterprise Server	15.4	any	libopenssl-1_0_0-devel	1.0.2p-3.8.1	libopenssl-1_0_0-devel-1.0.2p-3.8.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2018-0737
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1089039
bugzilla	www.bugzilla.suse.com/1089041
bugzilla	www.bugzilla.suse.com/1089044
bugzilla	www.bugzilla.suse.com/1089045
bugzilla	www.bugzilla.suse.com/1108542
bugzilla	www.bugzilla.suse.com/1123780
bugzilla	www.bugzilla.suse.com/1126909
lists	www.lists.suse.com/pipermail/sle-security-updates/2020-January/006341.html

07 Jun 2026 05:55Current

6.5Medium risk

Vulners AI Score6.5

CVSS 34.7

EPSS0.38121

openssl rsa key cache timing private key version 1.1.0i-dev version 1.0.2p-dev