Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:3866-1

Опубликовано: 22 нояб. 2018
Источник: suse-cvrf

Описание

Security update for openssl

This update for openssl fixes the following issues:

Security issues fixed:

  • CVE-2018-0734: Fixed timing vulnerability in DSA signature generation (bsc#1113652).
  • CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses (bsc#1113534).
  • Add missing timing side channel patch for DSA signature generation (bsc#1113742).

Non-security issues fixed:

  • Fixed infinite loop in DSA generation with incorrect parameters (bsc#1112209).

Список пакетов

SUSE Enterprise Storage 4
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1
SUSE Linux Enterprise Desktop 12 SP3
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
SUSE Linux Enterprise Server 12 SP2-BCL
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1
SUSE Linux Enterprise Server 12 SP2-LTSS
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1
SUSE Linux Enterprise Server 12 SP3
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1
SUSE Linux Enterprise Software Development Kit 12 SP3
libopenssl-devel-1.0.2j-60.46.1
SUSE OpenStack Cloud 7
libopenssl-devel-1.0.2j-60.46.1
libopenssl1_0_0-1.0.2j-60.46.1
libopenssl1_0_0-32bit-1.0.2j-60.46.1
libopenssl1_0_0-hmac-1.0.2j-60.46.1
libopenssl1_0_0-hmac-32bit-1.0.2j-60.46.1
openssl-1.0.2j-60.46.1
openssl-doc-1.0.2j-60.46.1

Ссылки

Описание

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).

Затронутые продукты
SUSE Enterprise Storage 4:libopenssl-devel-1.0.2j-60.46.1
SUSE Enterprise Storage 4:libopenssl1_0_0-1.0.2j-60.46.1
SUSE Enterprise Storage 4:libopenssl1_0_0-32bit-1.0.2j-60.46.1
SUSE Enterprise Storage 4:libopenssl1_0_0-hmac-1.0.2j-60.46.1
Ссылки

Описание

Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.

Затронутые продукты
SUSE Enterprise Storage 4:libopenssl-devel-1.0.2j-60.46.1
SUSE Enterprise Storage 4:libopenssl1_0_0-1.0.2j-60.46.1
SUSE Enterprise Storage 4:libopenssl1_0_0-32bit-1.0.2j-60.46.1
SUSE Enterprise Storage 4:libopenssl1_0_0-hmac-1.0.2j-60.46.1
Ссылки
Уязвимость SUSE-SU-2018:3866-1