Overview

File _patchinfo of Package patchinfo.9939

<patchinfo incident="9939">
  <issue tracker="bnc" id="1100078">curl on SLES12 shows some SSL errors we did not see on SLES11</issue>
  <issue tracker="bnc" id="1113975">"SSL3 alert read:fatal:bad record mac" on system with AMD cpu</issue>
  <issue tracker="bnc" id="1127080">VUL-1: CVE-2019-1559: openssl,openssl1,openssl-1_0_0,openssl-1_1,compat-openssl097g,compat-openssl098: 0-byte record padding oracle</issue>
  <issue tracker="bnc" id="1117951">VUL-0: The 9 Lives of Bleichenbacher's CAT: New Cache ATtacks on TLS Implementations</issue>
  <issue tracker="cve" id="2019-1559"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pmonrealgonzalez</packager>
  <description>This update for openssl fixes the following issues:

Security issues fixed: 

- The 9 Lives of Bleichenbacher's CAT: Cache Attacks on TLS Implementations (bsc#1117951)
- CVE-2019-1559: Fixed OpenSSL 0-byte Record Padding Oracle which under certain circumstances
  a TLS server can be forced to respond differently to a client and lead to the decryption of the data (bsc#1127080).

Other issues addressed: 

- Fixed IV handling in SHAEXT paths: aes/asm/aesni-sha*-x86_64.pl (bsc#1113975).
- Set TLS version to 0 in msg_callback for record messages to avoid confusing applications (bsc#1100078).

This update was imported from the SUSE:SLE-12-SP2:Update update project.</description>
  <summary>Security update for openssl</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places