Login
Newsletter
Werbung
Sicherheit: Zwei Probleme in openssl
Aktuelle Meldungen Distributionen
Name: Zwei Probleme in openssl
ID: SUSE-SU-403
Distribution: SUSE
Plattformen: SUSE Linux Enterprise Desktop 11 SP1, SUSE Linux Enterprise Server 11 SP1, SUSE Linux Enterprise Software Development Kit 11 SP1, SUSE Linux Enterprise Server 11 SP1 for VMware
Datum: Fr, 6. Januar 2012, 11:35
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5029
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0014
Applikationen: OpenSSL

Originalnachricht

 
   SUSE Security Update: Security update for openSSL
______________________________________________________________________________

Announcement ID:    SUSE-SU-403 Forbidden-1
Rating:             important
References:         #670526 #678195 #735850 
Cross-References:   CVE-2009-5029 CVE-2011-0014
Affected Products:
                    SUSE Linux Enterprise Software Development Kit 11 SP1
                    SUSE Linux Enterprise Server 11 SP1 for VMware
                    SUSE Linux Enterprise Server 11 SP1
                    SUSE Linux Enterprise Desktop 11 SP1
______________________________________________________________________________

   An update that solves two vulnerabilities and has one
   errata is now available.

Description:


   This update improves the ClientHello handshake message
   parsing function.  Prior to this update is was possible
   that this function reads beyond the  end of a message
   leading to invalid memory access and a crash. Under some
   circumstances it was possible that information from the
   OCSP extensions was  disclosed. (CVE-2011-0014: CVSS v2
   Base Score: 5.8  (AV:N/AC:M/Au:N/C:P/I:N/A:P))

   Security Issue reference:

   * CVE-2011-0014
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0014
   >

Indications:

   Please update.

Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Software Development Kit 11 SP1:

      zypper in -t patch sdksp1-glibc-5555 sdksp1-libopenssl-devel-3938

   - SUSE Linux Enterprise Server 11 SP1 for VMware:

      zypper in -t patch slessp1-glibc-5555 slessp1-libopenssl-devel-3938

   - SUSE Linux Enterprise Server 11 SP1:

      zypper in -t patch slessp1-glibc-5555 slessp1-libopenssl-devel-3938

   - SUSE Linux Enterprise Desktop 11 SP1:

      zypper in -t patch sledsp1-glibc-5555 sledsp1-libopenssl-devel-3938

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Software Development Kit 11 SP1 (i586 ia64 ppc64
 s390x x86_64):

      libopenssl-devel-0.9.8h-30.32.1

   - SUSE Linux Enterprise Software Development Kit 11 SP1 (i586 x86_64):

      glibc-html-2.11.1-0.34.1
      glibc-info-2.11.1-0.34.1

   - SUSE Linux Enterprise Server 11 SP1 for VMware (i586 i686 x86_64):

      glibc-2.11.1-0.34.1
      glibc-devel-2.11.1-0.34.1

   - SUSE Linux Enterprise Server 11 SP1 for VMware (i586 x86_64):

      glibc-html-2.11.1-0.34.1
      glibc-i18ndata-2.11.1-0.34.1
      glibc-info-2.11.1-0.34.1
      glibc-locale-2.11.1-0.34.1
      glibc-profile-2.11.1-0.34.1
      libopenssl0_9_8-0.9.8h-30.32.1
      nscd-2.11.1-0.34.1
      openssl-0.9.8h-30.32.1
      openssl-doc-0.9.8h-30.32.1

   - SUSE Linux Enterprise Server 11 SP1 for VMware (x86_64):

      glibc-32bit-2.11.1-0.34.1
      glibc-devel-32bit-2.11.1-0.34.1
      glibc-locale-32bit-2.11.1-0.34.1
      glibc-profile-32bit-2.11.1-0.34.1
      libopenssl0_9_8-32bit-0.9.8h-30.32.1

   - SUSE Linux Enterprise Server 11 SP1 (i586 i686 ia64 ppc64 s390x x86_64):

      glibc-2.11.1-0.34.1
      glibc-devel-2.11.1-0.34.1

   - SUSE Linux Enterprise Server 11 SP1 (i586 ia64 ppc64 s390x x86_64):

      glibc-html-2.11.1-0.34.1
      glibc-i18ndata-2.11.1-0.34.1
      glibc-info-2.11.1-0.34.1
      glibc-locale-2.11.1-0.34.1
      glibc-profile-2.11.1-0.34.1
      libopenssl0_9_8-0.9.8h-30.32.1
      nscd-2.11.1-0.34.1
      openssl-0.9.8h-30.32.1
      openssl-doc-0.9.8h-30.32.1

   - SUSE Linux Enterprise Server 11 SP1 (ppc64 s390x x86_64):

      glibc-32bit-2.11.1-0.34.1
      glibc-devel-32bit-2.11.1-0.34.1
      glibc-locale-32bit-2.11.1-0.34.1
      glibc-profile-32bit-2.11.1-0.34.1
      libopenssl0_9_8-32bit-0.9.8h-30.32.1

   - SUSE Linux Enterprise Server 11 SP1 (ia64):

      glibc-locale-x86-2.11.1-0.34.1
      glibc-profile-x86-2.11.1-0.34.1
      glibc-x86-2.11.1-0.34.1
      libopenssl0_9_8-x86-0.9.8h-30.32.1

   - SUSE Linux Enterprise Desktop 11 SP1 (i586 i686 x86_64):

      glibc-2.11.1-0.34.1
      glibc-devel-2.11.1-0.34.1

   - SUSE Linux Enterprise Desktop 11 SP1 (i586 x86_64):

      glibc-i18ndata-2.11.1-0.34.1
      glibc-locale-2.11.1-0.34.1
      libopenssl0_9_8-0.9.8h-30.32.1
      nscd-2.11.1-0.34.1
      openssl-0.9.8h-30.32.1

   - SUSE Linux Enterprise Desktop 11 SP1 (x86_64):

      glibc-32bit-2.11.1-0.34.1
      glibc-devel-32bit-2.11.1-0.34.1
      glibc-locale-32bit-2.11.1-0.34.1
      libopenssl0_9_8-32bit-0.9.8h-30.32.1


References:

   http://support.novell.com/security/cve/CVE-2009-5029.html
   http://support.novell.com/security/cve/CVE-2011-0014.html
   https://bugzilla.novell.com/670526
   https://bugzilla.novell.com/678195
   https://bugzilla.novell.com/735850
   ?keywords=2adddddaf0d4d6c89870ab7b933c2204
   ?keywords=465d0206a0a64cb1c71ef81d34e113c1

-- 
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung