Overview

File _patchinfo of Package patchinfo.37526

<patchinfo incident="37526">
  <issue tracker="bnc" id="1236771">[FIPS 140-3][OpenSSL1] Non approved PBKDF parameters wrongly resulting as approved</issue>
  <issue tracker="bnc" id="1236136">VUL-0: CVE-2024-13176: openssl: timing side-channel in the ECDSA signature computation</issue>
  <issue tracker="cve" id="2024-13176"/>
  <packager>ayankov</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for openssl-1_1</summary>
  <description>This update for openssl-1_1 fixes the following issues:

- CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation (bsc#1236136).

Other bugfixes:

- Non approved PBKDF parameters wrongly resulting as approved (bsc#1236771).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places