Overview

File _patchinfo of Package patchinfo.34887

<patchinfo incident="34887">
  <issue tracker="bnc" id="1226463">algif_hash in kernel-obs-build causes an openssl-1_1 test failure</issue>
  <issue tracker="bnc" id="1222899">[SECURITY] openSSL 3.1.x EC doesn't work with tpm2</issue>
  <issue tracker="bnc" id="1223336">openssl-3: variations in openssl-3-debugsource</issue>
  <issue tracker="bnc" id="1227138">VUL-0: CVE-2024-5535: openssl: SSL_select_next_proto buffer overread</issue>
  <issue tracker="cve" id="2024-5535"/>
  <packager>pmonrealgonzalez</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for openssl-3</summary>
  <description>This update for openssl-3 fixes the following issues:

Security fixes:

- CVE-2024-5535: Fixed SSL_select_next_proto buffer overread (bsc#1227138)

Other fixes:

- Build with no-afalgeng (bsc#1226463)
- Build with enabled sm2 and sm4 support (bsc#1222899)
- Fix non-reproducibility issue (bsc#1223336)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places