openSUSE Build Service

Overview Repositories Revisions Requests Users Attributes Meta

Security update for openssl-1_0_0

This update for openssl-1_0_0 fixes the following issues:

- CVE-2021-23840: Fixed an Integer overflow in CipherUpdate (bsc#1182333)
- CVE-2021-23841: Fixed a Null pointer dereference in X509_issuer_and_serial_hash() (bsc#1182331)

This update was imported from the SUSE:SLE-15:Update update project.

Submitted by Pedro Monreal Gonzalez (pmonrealgonzalez)

Fixed bugs

bnc#1182333

VUL-1: CVE-2021-23840: openssl-1_0_0,openssl1,compat-openssl098,openssl-1_1,openssl: Integer overflow in CipherUpdate

bnc#1182331

VUL-0: CVE-2021-23841: openssl1,openssl-1_1,compat-openssl098,openssl-1_0_0,openssl: Null pointer deref in X509_issuer_and_serial_hash() (CVE-2021-23841)

CVE-2021-23841

CVE-2021-23840

Places

Fixed bugs

Selected Binaries

Places