Overview Repositories Revisions Requests Users Attributes Meta
Security update for openssl

openssl was updated to 1.0.1k to fix various security
issues and bugs.

More information can be found in the openssl advisory:
http://openssl.org/news/secadv_20150108.txt

Following issues were fixed:

* CVE-2014-3570 (bsc#912296): Bignum squaring (BN_sqr) may have produced incorrect results on some platforms, including x86_64.

* CVE-2014-3571 (bsc#912294): Fixed crash in dtls1_get_record whilst in the listen state where you get two separate reads performed - one for the header and one for the body of the handshake record.

* CVE-2014-3572 (bsc#912015): Don't accept a handshake using an ephemeral ECDH ciphersuites with the server key exchange message omitted.

* CVE-2014-8275 (bsc#912018): Fixed various certificate fingerprint issues.

* CVE-2015-0204 (bsc#912014): Only allow ephemeral RSA keys in export ciphersuites

* CVE-2015-0205 (bsc#912293): A fixwas added to prevent use of DH client certificates without sending certificate verify message.

* CVE-2015-0206 (bsc#912292): A memory leak was fixed in dtls1_buffer_record.

Fixed bugs
bnc#911399
VUL-0: CVE-2014-3569: openssl: remote denial of service when built with no-ssl3
bnc#912014
VUL-0: CVE-2015-0204: openssl: Only allow ephemeral RSA keys in export ciphersuites.
bnc#912015
VUL-0: CVE-2014-3572: openssl: ECDH downgrade bug fix
bnc#912018
VUL-0: CVE-2014-8275: openssl: Fix various certificate fingerprint issues
bnc#912292
VUL-0: CVE-2015-0206: openssl: memory leak can occur in dtls1_buffer_record
bnc#912293
VUL-0: CVE-2015-0205: openssl: Unauthenticated DH client certificate fix.
bnc#912294
VUL-0: CVE-2014-3571: openssl: Fix crash in dtls1_get_record
bnc#912296
VUL-0: CVE-2014-3570: openssl: Bignum squaring may produce incorrect results
CVE-CVE-2014-3570
CVE-CVE-2014-8275
CVE-CVE-2015-0204
CVE-CVE-2015-0205
CVE-CVE-2014-3569
CVE-CVE-2014-3571
CVE-CVE-2014-3572
CVE-CVE-2015-0206
Selected Binaries
openSUSE Build Service is sponsored by
Places