Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-3511 (GCVE-0-2014-3511)
Vulnerability from cvelistv5 – Published: 2014-08-13 23:00 – Updated: 2024-08-06 10:43
VLAI?
EPSS
Summary
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T10:43:06.344Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "openSUSE-SU-2014:1052",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"name": "60221",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60221"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"name": "61184",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61184"
},
{
"name": "SSRT101846",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "60022",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60022"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"name": "61017",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61017"
},
{
"name": "RHSA-2015:0197",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"name": "60377",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60377"
},
{
"name": "SSRT101818",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "59887",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59887"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"name": "HPSBMU03304",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"name": "60890",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60890"
},
{
"name": "GLSA-201412-39",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"name": "HPSBHF03293",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"name": "HPSBMU03260",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "60803",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60803"
},
{
"name": "59700",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59700"
},
{
"name": "FEDORA-2014-9308",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"name": "1030693",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1030693"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"name": "openssl-cve20143511-sec-bypass(95162)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"name": "60917",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60917"
},
{
"name": "HPSBMU03216",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"name": "NetBSD-SA2014-008",
"tags": [
"vendor-advisory",
"x_refsource_NETBSD",
"x_transferred"
],
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"name": "60493",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60493"
},
{
"name": "59710",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59710"
},
{
"name": "60921",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60921"
},
{
"name": "69079",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/69079"
},
{
"name": "61043",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61043"
},
{
"name": "60810",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60810"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"name": "61100",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61100"
},
{
"name": "FreeBSD-SA-14:18",
"tags": [
"vendor-advisory",
"x_refsource_FREEBSD",
"x_transferred"
],
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"name": "61775",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61775"
},
{
"name": "SSRT101894",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "DSA-2998",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"name": "HPSBMU03263",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"name": "FEDORA-2014-9301",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"name": "61959",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61959"
},
{
"name": "59756",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59756"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"name": "HPSBMU03267",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"name": "HPSBMU03261",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"name": "RHSA-2015:0126",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"name": "58962",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/58962"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"name": "60938",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60938"
},
{
"name": "60684",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60684"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.citrix.com/article/CTX216642"
},
{
"name": "[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"name": "61139",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/61139"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-08-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-11-14T10:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "openSUSE-SU-2014:1052",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"name": "60221",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60221"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"name": "61184",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61184"
},
{
"name": "SSRT101846",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "60022",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60022"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"name": "61017",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61017"
},
{
"name": "RHSA-2015:0197",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"name": "60377",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60377"
},
{
"name": "SSRT101818",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "59887",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59887"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"name": "HPSBMU03304",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"name": "60890",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60890"
},
{
"name": "GLSA-201412-39",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"name": "HPSBHF03293",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"name": "HPSBMU03260",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "60803",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60803"
},
{
"name": "59700",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59700"
},
{
"name": "FEDORA-2014-9308",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"name": "1030693",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1030693"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"name": "openssl-cve20143511-sec-bypass(95162)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"name": "60917",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60917"
},
{
"name": "HPSBMU03216",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"name": "NetBSD-SA2014-008",
"tags": [
"vendor-advisory",
"x_refsource_NETBSD"
],
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"name": "60493",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60493"
},
{
"name": "59710",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59710"
},
{
"name": "60921",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60921"
},
{
"name": "69079",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/69079"
},
{
"name": "61043",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61043"
},
{
"name": "60810",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60810"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"name": "61100",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61100"
},
{
"name": "FreeBSD-SA-14:18",
"tags": [
"vendor-advisory",
"x_refsource_FREEBSD"
],
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"name": "61775",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61775"
},
{
"name": "SSRT101894",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "DSA-2998",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"name": "HPSBMU03263",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"name": "FEDORA-2014-9301",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"name": "61959",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61959"
},
{
"name": "59756",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59756"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"name": "HPSBMU03267",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"name": "HPSBMU03261",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"name": "RHSA-2015:0126",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"name": "58962",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/58962"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"name": "60938",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60938"
},
{
"name": "60684",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60684"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.citrix.com/article/CTX216642"
},
{
"name": "[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"name": "61139",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/61139"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2014-3511",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "openSUSE-SU-2014:1052",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-1052.html",
"refsource": "CONFIRM",
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"name": "60221",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60221"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"name": "61184",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61184"
},
{
"name": "SSRT101846",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "60022",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60022"
},
{
"name": "https://www.openssl.org/news/secadv_20140806.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"name": "61017",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61017"
},
{
"name": "RHSA-2015:0197",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"name": "60377",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60377"
},
{
"name": "SSRT101818",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "59887",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59887"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"name": "HPSBMU03304",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"name": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm",
"refsource": "CONFIRM",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"name": "60890",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60890"
},
{
"name": "GLSA-201412-39",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"name": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html",
"refsource": "CONFIRM",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"name": "HPSBHF03293",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888",
"refsource": "CONFIRM",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"name": "HPSBMU03260",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "60803",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60803"
},
{
"name": "59700",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59700"
},
{
"name": "FEDORA-2014-9308",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"name": "1030693",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1030693"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380",
"refsource": "CONFIRM",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"name": "openssl-cve20143511-sec-bypass(95162)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"name": "http://www.splunk.com/view/SP-CAAANHS",
"refsource": "CONFIRM",
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"name": "60917",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60917"
},
{
"name": "HPSBMU03216",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "http://www.tenable.com/security/tns-2014-06",
"refsource": "CONFIRM",
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"name": "NetBSD-SA2014-008",
"refsource": "NETBSD",
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084",
"refsource": "CONFIRM",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"name": "60493",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60493"
},
{
"name": "59710",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59710"
},
{
"name": "60921",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60921"
},
{
"name": "69079",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/69079"
},
{
"name": "61043",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61043"
},
{
"name": "60810",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60810"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"name": "61100",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61100"
},
{
"name": "FreeBSD-SA-14:18",
"refsource": "FREEBSD",
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"name": "61775",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61775"
},
{
"name": "SSRT101894",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "DSA-2998",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"name": "HPSBMU03263",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"name": "FEDORA-2014-9301",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"name": "61959",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61959"
},
{
"name": "59756",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59756"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"name": "HPSBMU03267",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"name": "HPSBMU03261",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"name": "RHSA-2015:0126",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"name": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc",
"refsource": "CONFIRM",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"name": "58962",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/58962"
},
{
"name": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt",
"refsource": "CONFIRM",
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"name": "60938",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60938"
},
{
"name": "60684",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60684"
},
{
"name": "https://support.citrix.com/article/CTX216642",
"refsource": "CONFIRM",
"url": "https://support.citrix.com/article/CTX216642"
},
{
"name": "[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released",
"refsource": "MLIST",
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"name": "https://techzone.ergon.ch/CVE-2014-3511",
"refsource": "CONFIRM",
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"name": "61139",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61139"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2014-3511",
"datePublished": "2014-08-13T23:00:00",
"dateReserved": "2014-05-14T00:00:00",
"dateUpdated": "2024-08-06T10:43:06.344Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FBD8C92-6138-4274-ACBA-D7D42DAEC5AC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A2075BD-6102-4B0F-839A-836E9585F43B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A2FA09E-2BF7-4968-B62D-00DA57F81EA1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"F02E634E-1E3D-4E44-BADA-76F92483A732\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*\", \"matchCriteriaId\": \"FCC2B07A-49EF-411F-8A4D-89435E22B043\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E9480D6-3B6A-4C41-B8C1-C3F945040772\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"10FF0A06-DA61-4250-B083-67E55E362677\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A6BA453-C150-4159-B80B-5465EFF83F11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"638A2E69-8AB6-4FEA-852A-FEF16A500C1A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56C47D3A-B99D-401D-B6B8-1194B2DB4809\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"08355B10-E004-4BE6-A5AE-4D428810580B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"738BCFDC-1C49-4774-95AE-E099F707DEF9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D4B242C0-D27D-4644-AD19-5ACB853C9DC2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DC683F2-4346-4E5E-A8D7-67B4F4D7827B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"764B7D38-BC1B-47DB-B1DF-D092BDA4BFCB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0j:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6604E7BE-9F9B-444D-A63A-F65D1CFDF3BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"132B9217-B0E0-4E3E-9096-162AA28E158E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0l:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7619F9A0-9054-4217-93D1-3EA64876C5B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.0m:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D82C405-17E2-4DF1-8DF5-315BD5A41595\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D1C00C0-C77E-4255-9ECA-20F2673C7366\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"21F16D65-8A46-4AC7-8970-73AB700035FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"92F393FF-7E6F-4671-BFBF-060162E12659\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"E1B85A09-CF8D-409D-966E-168F9959F6F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A66E6CF-39CF-412E-8EF0-8E10BA21B4A4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C684FB18-FDDC-4BED-A28C-C23EE6CD0094\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A74A79A7-4FAF-4C81-8622-050008B96AE1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CEDACCB9-8D61-49EE-9957-9E58BC7BB031\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4993DD56-F9E3-4AC8-AC3E-BF204B950DEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E884B241-F9C3-44F8-A420-DE65F5F3D660\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A383620-B4F7-44A7-85DA-A4FF2E115D80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F0C6812-F455-49CF-B29B-9AC00306DA43\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \\\"protocol downgrade\\\" issue.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n ssl23_get_client_hello en s23_srvr.c en OpenSSL 1.0.1 anterior a 1.0.1i permite a atacantes man-in-the-middle forzar el uso de TLS 1.0 mediante la provocaci\\u00f3n de la fragmentaci\\u00f3n de mensajes ClientHello comunicaciones entre un cliente y el servidor que ambos soportan versiones TLS posteriores, relacionado con un problema de \u0027degradaci\\u00f3n de protocolo\u0027.\"}]",
"id": "CVE-2014-3511",
"lastModified": "2024-11-21T02:08:16.303",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2014-08-13T23:55:07.623",
"references": "[{\"url\": \"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://linux.oracle.com/errata/ELSA-2014-1052.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0126.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0197.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/58962\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/59700\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/59710\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/59756\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/59887\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60022\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60221\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60377\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60493\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60684\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60803\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60810\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60890\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60917\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60921\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60938\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61017\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61043\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61100\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61139\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61184\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61775\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/61959\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-201412-39.xml\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21682293\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21683389\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21686997\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.arubanetworks.com/support/alerts/aid-08182014.txt\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.debian.org/security/2014/dsa-2998\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.securityfocus.com/bid/69079\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.securitytracker.com/id/1030693\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.splunk.com/view/SP-CAAANHS\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.tenable.com/security/tns-2014-06\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=1127504\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/95162\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://support.citrix.com/article/CTX216642\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://techzone.ergon.ch/CVE-2014-3511\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://www.openssl.org/news/secadv_20140806.txt\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://linux.oracle.com/errata/ELSA-2014-1052.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0126.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0197.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/58962\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/59700\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/59710\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/59756\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/59887\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60022\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60221\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60377\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60493\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60684\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60803\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60810\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60890\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60917\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60921\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60938\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61017\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61043\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61100\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61139\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61184\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61775\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/61959\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-201412-39.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21682293\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21683389\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21686997\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.arubanetworks.com/support/alerts/aid-08182014.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2014/dsa-2998\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/69079\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id/1030693\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.splunk.com/view/SP-CAAANHS\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.tenable.com/security/tns-2014-06\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=1127504\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/95162\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://support.citrix.com/article/CTX216642\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://techzone.ergon.ch/CVE-2014-3511\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.openssl.org/news/secadv_20140806.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2014-3511\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2014-08-13T23:55:07.623\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \\\"protocol downgrade\\\" issue.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n ssl23_get_client_hello en s23_srvr.c en OpenSSL 1.0.1 anterior a 1.0.1i permite a atacantes man-in-the-middle forzar el uso de TLS 1.0 mediante la provocaci\u00f3n de la fragmentaci\u00f3n de mensajes ClientHello comunicaciones entre un cliente y el servidor que ambos soportan versiones TLS posteriores, relacionado con un problema de \u0027degradaci\u00f3n de protocolo\u0027.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FBD8C92-6138-4274-ACBA-D7D42DAEC5AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A2075BD-6102-4B0F-839A-836E9585F43B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A2FA09E-2BF7-4968-B62D-00DA57F81EA1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F02E634E-1E3D-4E44-BADA-76F92483A732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCC2B07A-49EF-411F-8A4D-89435E22B043\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E9480D6-3B6A-4C41-B8C1-C3F945040772\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10FF0A06-DA61-4250-B083-67E55E362677\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A6BA453-C150-4159-B80B-5465EFF83F11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"638A2E69-8AB6-4FEA-852A-FEF16A500C1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56C47D3A-B99D-401D-B6B8-1194B2DB4809\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08355B10-E004-4BE6-A5AE-4D428810580B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"738BCFDC-1C49-4774-95AE-E099F707DEF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4B242C0-D27D-4644-AD19-5ACB853C9DC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DC683F2-4346-4E5E-A8D7-67B4F4D7827B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"764B7D38-BC1B-47DB-B1DF-D092BDA4BFCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0j:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6604E7BE-9F9B-444D-A63A-F65D1CFDF3BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"132B9217-B0E0-4E3E-9096-162AA28E158E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0l:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7619F9A0-9054-4217-93D1-3EA64876C5B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.0m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D82C405-17E2-4DF1-8DF5-315BD5A41595\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D1C00C0-C77E-4255-9ECA-20F2673C7366\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"21F16D65-8A46-4AC7-8970-73AB700035FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"92F393FF-7E6F-4671-BFBF-060162E12659\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1B85A09-CF8D-409D-966E-168F9959F6F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A66E6CF-39CF-412E-8EF0-8E10BA21B4A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C684FB18-FDDC-4BED-A28C-C23EE6CD0094\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A74A79A7-4FAF-4C81-8622-050008B96AE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEDACCB9-8D61-49EE-9957-9E58BC7BB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4993DD56-F9E3-4AC8-AC3E-BF204B950DEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E884B241-F9C3-44F8-A420-DE65F5F3D660\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A383620-B4F7-44A7-85DA-A4FF2E115D80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F0C6812-F455-49CF-B29B-9AC00306DA43\"}]}]}],\"references\":[{\"url\":\"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://linux.oracle.com/errata/ELSA-2014-1052.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0126.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0197.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/58962\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/59700\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/59710\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/59756\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/59887\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60022\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60221\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60377\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60493\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60684\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60803\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60810\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60890\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60917\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60921\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60938\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61017\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61043\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61100\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61139\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61184\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61775\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/61959\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201412-39.xml\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21682293\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21683389\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21686997\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.arubanetworks.com/support/alerts/aid-08182014.txt\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2014/dsa-2998\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/69079\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id/1030693\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.splunk.com/view/SP-CAAANHS\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.tenable.com/security/tns-2014-06\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1127504\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/95162\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://support.citrix.com/article/CTX216642\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://techzone.ergon.ch/CVE-2014-3511\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.openssl.org/news/secadv_20140806.txt\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://linux.oracle.com/errata/ELSA-2014-1052.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0126.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0197.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/58962\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59700\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59710\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59756\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59887\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60022\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60221\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60377\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60493\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60684\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60803\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60810\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60890\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60917\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60921\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60938\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61017\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61043\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61139\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61184\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61775\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/61959\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201412-39.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21682293\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21683389\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21686997\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.arubanetworks.com/support/alerts/aid-08182014.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2014/dsa-2998\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/69079\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1030693\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.splunk.com/view/SP-CAAANHS\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.tenable.com/security/tns-2014-06\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1127504\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/95162\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.citrix.com/article/CTX216642\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://techzone.ergon.ch/CVE-2014-3511\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.openssl.org/news/secadv_20140806.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2014-AVI-344
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans OpenSSL. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "OpenSSL versions ant\u00e9rieures \u00e0 1.0.0n",
"product": {
"name": "OpenSSL",
"vendor": {
"name": "OpenSSL",
"scada": false
}
}
},
{
"description": "OpenSSL versions ant\u00e9rieures \u00e0 1.0.1i",
"product": {
"name": "OpenSSL",
"vendor": {
"name": "OpenSSL",
"scada": false
}
}
},
{
"description": "OpenSSL versions ant\u00e9rieures \u00e0 0.9.8zb",
"product": {
"name": "OpenSSL",
"vendor": {
"name": "OpenSSL",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-344",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-08-07T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eOpenSSL\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, un contournement\nde la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans OpenSSL",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 OpenSSL du 06 ao\u00fbt 2014",
"url": "http://www.openssl.org/news/secadv_20140806.txt"
}
]
}
CERTFR-2016-AVI-303
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Citrix. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Citrix | XenServer | Citrix XenServer version 6.0 sans le correctif de sécurité XS60E063 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 3.39 pour solutions matérielles embarquées NetScaler MPX/SDX de type 11500/13500/14500/16500/18500/20500, 115xx, 17550/19550/20550/21550 et T1110, ainsi que CloudBridge CB4000 et CB5000 | ||
| Citrix | XenServer | Citrix XenServer version 6.2 SP1 sans le correctif de sécurité XS62ESP1048 | ||
| Citrix | XenServer | Citrix XenServer version 6.1 sans le correctif de sécurité XS61E073 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 4.08 pour solutions matérielles embarquées NetScaler MPX/SDX de type 14xxx, 25xxx, T1120 et T1300 | ||
| Citrix | XenServer | Citrix XenServer version 6.0.2 Common Criteria sans le correctif de sécurité XS602ECC034 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 3.21 pour solutions matérielles embarquées NetScaler MPX/SDX de type 8xxx et T1010, ainsi que CloudBridge CB2000 et CB3000 | ||
| Citrix | XenServer | Citrix XenServer version 6.0.2 sans le correctif de sécurité XS602E057 | ||
| Citrix | XenServer | Citrix XenServer version 6.5 SP1 sans le correctif de sécurité XS65ESP1038 | ||
| Citrix | XenServer | Citrix XenServer version 7.0 sans le correctif de sécurité XS70E012 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 3.24 pour solutions matérielles embarquées NetScaler de type 22xxx et T1200 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Citrix XenServer version 6.0 sans le correctif de s\u00e9curit\u00e9 XS60E063",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 3.39 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler MPX/SDX de type 11500/13500/14500/16500/18500/20500, 115xx, 17550/19550/20550/21550 et T1110, ainsi que CloudBridge CB4000 et CB5000",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.2 SP1 sans le correctif de s\u00e9curit\u00e9 XS62ESP1048",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.1 sans le correctif de s\u00e9curit\u00e9 XS61E073",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 4.08 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler MPX/SDX de type 14xxx, 25xxx, T1120 et T1300",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.0.2 Common Criteria sans le correctif de s\u00e9curit\u00e9 XS602ECC034",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 3.21 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler MPX/SDX de type 8xxx et T1010, ainsi que CloudBridge CB2000 et CB3000",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.0.2 sans le correctif de s\u00e9curit\u00e9 XS602E057",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.5 SP1 sans le correctif de s\u00e9curit\u00e9 XS65ESP1038",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 7.0 sans le correctif de s\u00e9curit\u00e9 XS70E012",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 3.24 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler de type 22xxx et T1200",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3566",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3566"
},
{
"name": "CVE-2015-0292",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0292"
},
{
"name": "CVE-2016-7094",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7094"
},
{
"name": "CVE-2015-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0286"
},
{
"name": "CVE-2015-1791",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1791"
},
{
"name": "CVE-2013-4434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4434"
},
{
"name": "CVE-2014-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3570"
},
{
"name": "CVE-2015-0288",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0288"
},
{
"name": "CVE-2016-7093",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7093"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2015-4000",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4000"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2015-1789",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1789"
},
{
"name": "CVE-2016-7154",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7154"
},
{
"name": "CVE-2013-3619",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3619"
},
{
"name": "CVE-2015-1788",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1788"
},
{
"name": "CVE-2015-1792",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1792"
},
{
"name": "CVE-2013-3622",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3622"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2016-7092",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7092"
},
{
"name": "CVE-2015-0204",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0204"
},
{
"name": "CVE-2015-0293",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0293"
},
{
"name": "CVE-2013-4421",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4421"
},
{
"name": "CVE-2015-0287",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0287"
},
{
"name": "CVE-2013-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3608"
},
{
"name": "CVE-2014-8275",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8275"
},
{
"name": "CVE-2015-0205",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0205"
},
{
"name": "CVE-2013-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3620"
},
{
"name": "CVE-2013-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3609"
},
{
"name": "CVE-2015-0209",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0209"
},
{
"name": "CVE-2014-3572",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3572"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3569"
},
{
"name": "CVE-2013-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3607"
},
{
"name": "CVE-2013-3621",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3621"
},
{
"name": "CVE-2013-3623",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3623"
}
],
"links": [],
"reference": "CERTFR-2016-AVI-303",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-09-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Citrix\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et un contournement de la\npolitique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Citrix",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX216071 du 08 septembre 2016",
"url": "http://support.citrix.com/article/CTX216071"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX216642 du 08 septembre 2016",
"url": "http://support.citrix.com/article/CTX216642"
}
]
}
CERTFR-2014-AVI-409
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Huawei. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| N/A | N/A | Huawei OceanStor Dorado2100 versions antérieures à V100R001C00SPCa00 | ||
| N/A | N/A | Huawei OceanStor Dorado5100 versions antérieures à V100R001C00SPCa00 | ||
| N/A | N/A | Huawei OceanStor S5500T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor S5600T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei OceanStor HVS88T versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei eSDK Solution versions antérieures à V100R003C30SPC100 | ||
| N/A | N/A | Huawei OceanStor S5800T versions antérieures à V200R002C20 | ||
| N/A | N/A | Huawei OceanStor S5800T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor N8500 versions antérieures à V200R001C09SPC502 | ||
| N/A | N/A | Huawei OceanStor 6800 V3 versions antérieures à V300R001C10SPC100 | ||
| N/A | N/A | Huawei FusionAccess versions antérieures à V100R005C20 | ||
| N/A | N/A | Huawei S3300 versions antérieures à V100R006HP0011 | ||
| N/A | N/A | Huawei USG9500 versions antérieures à V300R001C01SPH303 | ||
| N/A | N/A | Huawei OceanStor S5500T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei OceanStor S2900 versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor S6900 versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei SmartCDN versions antérieures à V100R001C05SPC600T | ||
| N/A | N/A | Huawei OceanStor S2600T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei OceanStor S5600T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei eSight UC&C versions antérieures à V300R002C00SPC200 | ||
| N/A | N/A | Huawei OceanStor 18800 versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei USG9560 versions antérieures à USG9560 V300R001C01SPH303 | ||
| N/A | N/A | Huawei OceanStor S5600T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei eSight UC&C versions antérieures à V100R001C20SPC306 | ||
| N/A | N/A | Huawei OceanStor HVS85T versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei OceanStor S3900 versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei S7700 versions antérieures à V200R006C00SPC300 | ||
| N/A | N/A | Huawei HUAWEI S12700 versions antérieures à V200R006C00SPC300 | ||
| N/A | N/A | Huawei SoftCo versions antérieures à V200R001C01SPC500 | ||
| N/A | N/A | Huawei OceanStor S5800T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei OceanStor Dorado2100G2 versions antérieures à V100R001C00SPCa00 | ||
| N/A | N/A | Huawei USG9300 versions antérieures à USG9500 V300R001C01SPH303 | ||
| N/A | N/A | Huawei TSM versions antérieures à TSM V100R002C07SPC224 | ||
| N/A | N/A | Huawei OceanStor 18500 versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei OceanStor 18800F versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei OceanStor S6800T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei eSight UC&C versions antérieures à V100R001C01SPC303 | ||
| N/A | N/A | Huawei OceanStor S6800T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei OceanStor S2200T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei V200R001C91SPC200 versions antérieures à V200R001C91SPC202 | ||
| N/A | N/A | Huawei OceanStor S6800T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei OceanStor S2600T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor S2600T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei RSE6500 versions antérieures à V100R001C00SPC200 | ||
| N/A | N/A | Huawei TSM versions antérieures à Policy Center V100R003C10 | ||
| N/A | N/A | Huawei AP5010DN-AGN versions antérieures à V200R005C10 |
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Huawei OceanStor Dorado2100 versions ant\u00e9rieures \u00e0 V100R001C00SPCa00",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor Dorado5100 versions ant\u00e9rieures \u00e0 V100R001C00SPCa00",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5500T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5600T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor HVS88T versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSDK Solution versions ant\u00e9rieures \u00e0 V100R003C30SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5800T versions ant\u00e9rieures \u00e0 V200R002C20",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5800T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor N8500 versions ant\u00e9rieures \u00e0 V200R001C09SPC502",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 6800 V3 versions ant\u00e9rieures \u00e0 V300R001C10SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei FusionAccess versions ant\u00e9rieures \u00e0 V100R005C20",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei S3300 versions ant\u00e9rieures \u00e0 V100R006HP0011",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei USG9500 versions ant\u00e9rieures \u00e0 V300R001C01SPH303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5500T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2900 versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6900 versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei SmartCDN versions ant\u00e9rieures \u00e0 V100R001C05SPC600T",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2600T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5600T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSight UC\u0026C versions ant\u00e9rieures \u00e0 V300R002C00SPC200",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 18800 versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei USG9560 versions ant\u00e9rieures \u00e0 USG9560 V300R001C01SPH303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5600T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSight UC\u0026C versions ant\u00e9rieures \u00e0 V100R001C20SPC306",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor HVS85T versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S3900 versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei S7700 versions ant\u00e9rieures \u00e0 V200R006C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei HUAWEI S12700 versions ant\u00e9rieures \u00e0 V200R006C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei SoftCo versions ant\u00e9rieures \u00e0 V200R001C01SPC500",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5800T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor Dorado2100G2 versions ant\u00e9rieures \u00e0 V100R001C00SPCa00",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei USG9300 versions ant\u00e9rieures \u00e0 USG9500 V300R001C01SPH303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei TSM versions ant\u00e9rieures \u00e0 TSM V100R002C07SPC224",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 18500 versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 18800F versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6800T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSight UC\u0026C versions ant\u00e9rieures \u00e0 V100R001C01SPC303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6800T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2200T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei V200R001C91SPC200 versions ant\u00e9rieures \u00e0 V200R001C91SPC202",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6800T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2600T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2600T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei RSE6500 versions ant\u00e9rieures \u00e0 V100R001C00SPC200",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei TSM versions ant\u00e9rieures \u00e0 Policy Center V100R003C10",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei AP5010DN-AGN versions ant\u00e9rieures \u00e0 V200R005C10",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Huawei Huawei-SA-20141008-OpenSSL du 08 octobre 2014",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
}
],
"reference": "CERTFR-2014-AVI-409",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-10-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eHuawei\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Huawei",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Huawei Huawei-SA-20141008-OpenSSL du 08 octobre 2014",
"url": null
}
]
}
CERTFR-2014-AVI-525
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Contournement provisoire
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | N/A | IBM Rational ClearQuest 8.x | ||
| IBM | N/A | IBM Rational ClearCase 8.x | ||
| IBM | WebSphere | IBM WebSphere Message Broker 7.x | ||
| IBM | N/A | IBM Rational RequisitePro 7.x | ||
| IBM | N/A | IBM Rational ClearCase 7.x | ||
| IBM | N/A | IBM Integration Bus 9.x | ||
| IBM | N/A | IBM Cognos Business Intelligence 10.x | ||
| IBM | WebSphere | IBM WebSphere Portal 8.x | ||
| IBM | WebSphere | IBM WebSphere Message Broker 8.x | ||
| IBM | N/A | IBM Rational ClearQuest 7.x |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Rational ClearQuest 8.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational ClearCase 8.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Message Broker 7.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational RequisitePro 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational ClearCase 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Integration Bus 9.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cognos Business Intelligence 10.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Portal 8.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Message Broker 8.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational ClearQuest 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-6492",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6492"
},
{
"name": "CVE-2014-6502",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6502"
},
{
"name": "CVE-2014-6512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6512"
},
{
"name": "CVE-2014-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6531"
},
{
"name": "CVE-2014-6476",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6476"
},
{
"name": "CVE-2014-6458",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6458"
},
{
"name": "CVE-2014-6457",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6457"
},
{
"name": "CVE-2014-6527",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6527"
},
{
"name": "CVE-2014-6562",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6562"
},
{
"name": "CVE-2014-4288",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4288"
},
{
"name": "CVE-2014-6511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6511"
},
{
"name": "CVE-2014-6532",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6532"
},
{
"name": "CVE-2014-6513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6513"
},
{
"name": "CVE-2014-6493",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6493"
},
{
"name": "CVE-2014-6517",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6517"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-6215",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6215"
},
{
"name": "CVE-2014-6503",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6503"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-6466",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6466"
},
{
"name": "CVE-2014-6468",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6468"
},
{
"name": "CVE-2014-3065",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3065"
},
{
"name": "CVE-2014-4815",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4815"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6546"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-6558",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6558"
},
{
"name": "CVE-2014-6506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6506"
},
{
"name": "CVE-2014-6504",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6504"
},
{
"name": "CVE-2014-6515",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6515"
},
{
"name": "CVE-2014-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4244"
},
{
"name": "CVE-2014-6519",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6519"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-525",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-12-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits IBM\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\ncontournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM du 10 d\u00e9cembre 2014",
"url": "http://www.ibm.com/support/docview.wss?uid=swg24038915"
}
]
}
CERTFR-2014-AVI-525
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Contournement provisoire
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | N/A | IBM Rational ClearQuest 8.x | ||
| IBM | N/A | IBM Rational ClearCase 8.x | ||
| IBM | WebSphere | IBM WebSphere Message Broker 7.x | ||
| IBM | N/A | IBM Rational RequisitePro 7.x | ||
| IBM | N/A | IBM Rational ClearCase 7.x | ||
| IBM | N/A | IBM Integration Bus 9.x | ||
| IBM | N/A | IBM Cognos Business Intelligence 10.x | ||
| IBM | WebSphere | IBM WebSphere Portal 8.x | ||
| IBM | WebSphere | IBM WebSphere Message Broker 8.x | ||
| IBM | N/A | IBM Rational ClearQuest 7.x |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Rational ClearQuest 8.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational ClearCase 8.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Message Broker 7.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational RequisitePro 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational ClearCase 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Integration Bus 9.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cognos Business Intelligence 10.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Portal 8.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Message Broker 8.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Rational ClearQuest 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-6492",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6492"
},
{
"name": "CVE-2014-6502",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6502"
},
{
"name": "CVE-2014-6512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6512"
},
{
"name": "CVE-2014-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6531"
},
{
"name": "CVE-2014-6476",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6476"
},
{
"name": "CVE-2014-6458",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6458"
},
{
"name": "CVE-2014-6457",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6457"
},
{
"name": "CVE-2014-6527",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6527"
},
{
"name": "CVE-2014-6562",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6562"
},
{
"name": "CVE-2014-4288",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4288"
},
{
"name": "CVE-2014-6511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6511"
},
{
"name": "CVE-2014-6532",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6532"
},
{
"name": "CVE-2014-6513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6513"
},
{
"name": "CVE-2014-6493",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6493"
},
{
"name": "CVE-2014-6517",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6517"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-6215",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6215"
},
{
"name": "CVE-2014-6503",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6503"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-6466",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6466"
},
{
"name": "CVE-2014-6468",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6468"
},
{
"name": "CVE-2014-3065",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3065"
},
{
"name": "CVE-2014-4815",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4815"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6546"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-6558",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6558"
},
{
"name": "CVE-2014-6506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6506"
},
{
"name": "CVE-2014-6504",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6504"
},
{
"name": "CVE-2014-6515",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6515"
},
{
"name": "CVE-2014-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4244"
},
{
"name": "CVE-2014-6519",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6519"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-525",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-12-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits IBM\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\ncontournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM du 10 d\u00e9cembre 2014",
"url": "http://www.ibm.com/support/docview.wss?uid=swg24038915"
}
]
}
CERTFR-2014-AVI-395
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits F5. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BIG-IQ",
"product": {
"name": "BIG-IQ",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "FirePass",
"product": {
"name": "N/A",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "ARX",
"product": {
"name": "N/A",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "Enterprise Manager",
"product": {
"name": "N/A",
"vendor": {
"name": "F5",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-395",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-09-22T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eF5\u003c/span\u003e. Elles permettent \u00e0 un attaquant de provoquer\nun d\u00e9ni de service \u00e0 distance, un contournement de la politique de\ns\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits F5",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 sol15573 du 09 septembre 2014",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15573.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 sol15564 du 05 septembre 2014",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
}
]
}
CERTFR-2014-AVI-412
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS 11 | ||
| Juniper Networks | N/A | JunosE 14 | ||
| Juniper Networks | Junos OS | Junos OS 13 | ||
| Juniper Networks | N/A | JunosE 13 | ||
| Juniper Networks | N/A | JunosE 15 | ||
| Juniper Networks | Junos OS | Junos OS 12 | ||
| Juniper Networks | Junos OS | Junos OS 14 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS 11",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JunosE 14",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS 13",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JunosE 13",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JunosE 15",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS 12",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS 14",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6378"
},
{
"name": "CVE-2014-6379",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6379"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-6377",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6377"
},
{
"name": "CVE-2014-3825",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3825"
},
{
"name": "CVE-2014-6380",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6380"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3818",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3818"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-412",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-10-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eJuniper\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10650 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10652 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10652"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10651 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10651"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10649 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10649"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10653 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10653"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10655 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10655"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10654 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10654"
}
]
}
CERTFR-2014-AVI-409
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Huawei. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| N/A | N/A | Huawei OceanStor Dorado2100 versions antérieures à V100R001C00SPCa00 | ||
| N/A | N/A | Huawei OceanStor Dorado5100 versions antérieures à V100R001C00SPCa00 | ||
| N/A | N/A | Huawei OceanStor S5500T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor S5600T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei OceanStor HVS88T versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei eSDK Solution versions antérieures à V100R003C30SPC100 | ||
| N/A | N/A | Huawei OceanStor S5800T versions antérieures à V200R002C20 | ||
| N/A | N/A | Huawei OceanStor S5800T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor N8500 versions antérieures à V200R001C09SPC502 | ||
| N/A | N/A | Huawei OceanStor 6800 V3 versions antérieures à V300R001C10SPC100 | ||
| N/A | N/A | Huawei FusionAccess versions antérieures à V100R005C20 | ||
| N/A | N/A | Huawei S3300 versions antérieures à V100R006HP0011 | ||
| N/A | N/A | Huawei USG9500 versions antérieures à V300R001C01SPH303 | ||
| N/A | N/A | Huawei OceanStor S5500T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei OceanStor S2900 versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor S6900 versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei SmartCDN versions antérieures à V100R001C05SPC600T | ||
| N/A | N/A | Huawei OceanStor S2600T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei OceanStor S5600T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei eSight UC&C versions antérieures à V300R002C00SPC200 | ||
| N/A | N/A | Huawei OceanStor 18800 versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei USG9560 versions antérieures à USG9560 V300R001C01SPH303 | ||
| N/A | N/A | Huawei OceanStor S5600T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei eSight UC&C versions antérieures à V100R001C20SPC306 | ||
| N/A | N/A | Huawei OceanStor HVS85T versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei OceanStor S3900 versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei S7700 versions antérieures à V200R006C00SPC300 | ||
| N/A | N/A | Huawei HUAWEI S12700 versions antérieures à V200R006C00SPC300 | ||
| N/A | N/A | Huawei SoftCo versions antérieures à V200R001C01SPC500 | ||
| N/A | N/A | Huawei OceanStor S5800T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei OceanStor Dorado2100G2 versions antérieures à V100R001C00SPCa00 | ||
| N/A | N/A | Huawei USG9300 versions antérieures à USG9500 V300R001C01SPH303 | ||
| N/A | N/A | Huawei TSM versions antérieures à TSM V100R002C07SPC224 | ||
| N/A | N/A | Huawei OceanStor 18500 versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei OceanStor 18800F versions antérieures à V100R001C00SPC300 | ||
| N/A | N/A | Huawei OceanStor S6800T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei eSight UC&C versions antérieures à V100R001C01SPC303 | ||
| N/A | N/A | Huawei OceanStor S6800T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei OceanStor S2200T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei V200R001C91SPC200 versions antérieures à V200R001C91SPC202 | ||
| N/A | N/A | Huawei OceanStor S6800T versions antérieures à V200R002C00SPC400 | ||
| N/A | N/A | Huawei OceanStor S2600T versions antérieures à V100R005C30SPC300 | ||
| N/A | N/A | Huawei OceanStor S2600T versions antérieures à V200R002C20SPC100 | ||
| N/A | N/A | Huawei RSE6500 versions antérieures à V100R001C00SPC200 | ||
| N/A | N/A | Huawei TSM versions antérieures à Policy Center V100R003C10 | ||
| N/A | N/A | Huawei AP5010DN-AGN versions antérieures à V200R005C10 |
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Huawei OceanStor Dorado2100 versions ant\u00e9rieures \u00e0 V100R001C00SPCa00",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor Dorado5100 versions ant\u00e9rieures \u00e0 V100R001C00SPCa00",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5500T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5600T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor HVS88T versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSDK Solution versions ant\u00e9rieures \u00e0 V100R003C30SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5800T versions ant\u00e9rieures \u00e0 V200R002C20",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5800T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor N8500 versions ant\u00e9rieures \u00e0 V200R001C09SPC502",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 6800 V3 versions ant\u00e9rieures \u00e0 V300R001C10SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei FusionAccess versions ant\u00e9rieures \u00e0 V100R005C20",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei S3300 versions ant\u00e9rieures \u00e0 V100R006HP0011",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei USG9500 versions ant\u00e9rieures \u00e0 V300R001C01SPH303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5500T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2900 versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6900 versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei SmartCDN versions ant\u00e9rieures \u00e0 V100R001C05SPC600T",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2600T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5600T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSight UC\u0026C versions ant\u00e9rieures \u00e0 V300R002C00SPC200",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 18800 versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei USG9560 versions ant\u00e9rieures \u00e0 USG9560 V300R001C01SPH303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5600T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSight UC\u0026C versions ant\u00e9rieures \u00e0 V100R001C20SPC306",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor HVS85T versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S3900 versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei S7700 versions ant\u00e9rieures \u00e0 V200R006C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei HUAWEI S12700 versions ant\u00e9rieures \u00e0 V200R006C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei SoftCo versions ant\u00e9rieures \u00e0 V200R001C01SPC500",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S5800T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor Dorado2100G2 versions ant\u00e9rieures \u00e0 V100R001C00SPCa00",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei USG9300 versions ant\u00e9rieures \u00e0 USG9500 V300R001C01SPH303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei TSM versions ant\u00e9rieures \u00e0 TSM V100R002C07SPC224",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 18500 versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor 18800F versions ant\u00e9rieures \u00e0 V100R001C00SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6800T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei eSight UC\u0026C versions ant\u00e9rieures \u00e0 V100R001C01SPC303",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6800T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2200T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei V200R001C91SPC200 versions ant\u00e9rieures \u00e0 V200R001C91SPC202",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S6800T versions ant\u00e9rieures \u00e0 V200R002C00SPC400",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2600T versions ant\u00e9rieures \u00e0 V100R005C30SPC300",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei OceanStor S2600T versions ant\u00e9rieures \u00e0 V200R002C20SPC100",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei RSE6500 versions ant\u00e9rieures \u00e0 V100R001C00SPC200",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei TSM versions ant\u00e9rieures \u00e0 Policy Center V100R003C10",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Huawei AP5010DN-AGN versions ant\u00e9rieures \u00e0 V200R005C10",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Huawei Huawei-SA-20141008-OpenSSL du 08 octobre 2014",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
}
],
"reference": "CERTFR-2014-AVI-409",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-10-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eHuawei\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Huawei",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Huawei Huawei-SA-20141008-OpenSSL du 08 octobre 2014",
"url": null
}
]
}
CERTFR-2015-AVI-023
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS | ||
| Juniper Networks | N/A | MX Series | ||
| Juniper Networks | N/A | JSA Series | ||
| Juniper Networks | N/A | STRM Series |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "MX Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JSA Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "STRM Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-4831",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4831"
},
{
"name": "CVE-2014-0118",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0118"
},
{
"name": "CVE-2014-4829",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4829"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2014-6385",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6385"
},
{
"name": "CVE-2014-6382",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6382"
},
{
"name": "CVE-2014-0453",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0453"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2014-6383",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6383"
},
{
"name": "CVE-2014-6386",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6386"
},
{
"name": "CVE-2014-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4244"
},
{
"name": "CVE-2014-4832",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4832"
},
{
"name": "CVE-2014-5119",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5119"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-6075",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6075"
},
{
"name": "CVE-2014-6384",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6384"
}
],
"links": [],
"reference": "CERTFR-2015-AVI-023",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2015-01-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eJuniper\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10664 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10664"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10670 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10670"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10667 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10667"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10669 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10669"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10665 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10665"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10666 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10666"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10668 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10668"
}
]
}
CERTFR-2014-AVI-344
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans OpenSSL. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "OpenSSL versions ant\u00e9rieures \u00e0 1.0.0n",
"product": {
"name": "OpenSSL",
"vendor": {
"name": "OpenSSL",
"scada": false
}
}
},
{
"description": "OpenSSL versions ant\u00e9rieures \u00e0 1.0.1i",
"product": {
"name": "OpenSSL",
"vendor": {
"name": "OpenSSL",
"scada": false
}
}
},
{
"description": "OpenSSL versions ant\u00e9rieures \u00e0 0.9.8zb",
"product": {
"name": "OpenSSL",
"vendor": {
"name": "OpenSSL",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-344",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-08-07T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eOpenSSL\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, un contournement\nde la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans OpenSSL",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 OpenSSL du 06 ao\u00fbt 2014",
"url": "http://www.openssl.org/news/secadv_20140806.txt"
}
]
}
CERTFR-2016-AVI-303
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Citrix. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Citrix | XenServer | Citrix XenServer version 6.0 sans le correctif de sécurité XS60E063 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 3.39 pour solutions matérielles embarquées NetScaler MPX/SDX de type 11500/13500/14500/16500/18500/20500, 115xx, 17550/19550/20550/21550 et T1110, ainsi que CloudBridge CB4000 et CB5000 | ||
| Citrix | XenServer | Citrix XenServer version 6.2 SP1 sans le correctif de sécurité XS62ESP1048 | ||
| Citrix | XenServer | Citrix XenServer version 6.1 sans le correctif de sécurité XS61E073 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 4.08 pour solutions matérielles embarquées NetScaler MPX/SDX de type 14xxx, 25xxx, T1120 et T1300 | ||
| Citrix | XenServer | Citrix XenServer version 6.0.2 Common Criteria sans le correctif de sécurité XS602ECC034 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 3.21 pour solutions matérielles embarquées NetScaler MPX/SDX de type 8xxx et T1010, ainsi que CloudBridge CB2000 et CB3000 | ||
| Citrix | XenServer | Citrix XenServer version 6.0.2 sans le correctif de sécurité XS602E057 | ||
| Citrix | XenServer | Citrix XenServer version 6.5 SP1 sans le correctif de sécurité XS65ESP1038 | ||
| Citrix | XenServer | Citrix XenServer version 7.0 sans le correctif de sécurité XS70E012 | ||
| Citrix | NetScaler | Micrologiciel LOM versions antérieures à 3.24 pour solutions matérielles embarquées NetScaler de type 22xxx et T1200 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Citrix XenServer version 6.0 sans le correctif de s\u00e9curit\u00e9 XS60E063",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 3.39 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler MPX/SDX de type 11500/13500/14500/16500/18500/20500, 115xx, 17550/19550/20550/21550 et T1110, ainsi que CloudBridge CB4000 et CB5000",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.2 SP1 sans le correctif de s\u00e9curit\u00e9 XS62ESP1048",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.1 sans le correctif de s\u00e9curit\u00e9 XS61E073",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 4.08 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler MPX/SDX de type 14xxx, 25xxx, T1120 et T1300",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.0.2 Common Criteria sans le correctif de s\u00e9curit\u00e9 XS602ECC034",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 3.21 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler MPX/SDX de type 8xxx et T1010, ainsi que CloudBridge CB2000 et CB3000",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.0.2 sans le correctif de s\u00e9curit\u00e9 XS602E057",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 6.5 SP1 sans le correctif de s\u00e9curit\u00e9 XS65ESP1038",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer version 7.0 sans le correctif de s\u00e9curit\u00e9 XS70E012",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Micrologiciel LOM versions ant\u00e9rieures \u00e0 3.24 pour solutions mat\u00e9rielles embarqu\u00e9es NetScaler de type 22xxx et T1200",
"product": {
"name": "NetScaler",
"vendor": {
"name": "Citrix",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3566",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3566"
},
{
"name": "CVE-2015-0292",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0292"
},
{
"name": "CVE-2016-7094",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7094"
},
{
"name": "CVE-2015-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0286"
},
{
"name": "CVE-2015-1791",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1791"
},
{
"name": "CVE-2013-4434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4434"
},
{
"name": "CVE-2014-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3570"
},
{
"name": "CVE-2015-0288",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0288"
},
{
"name": "CVE-2016-7093",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7093"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2015-4000",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4000"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2015-1789",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1789"
},
{
"name": "CVE-2016-7154",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7154"
},
{
"name": "CVE-2013-3619",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3619"
},
{
"name": "CVE-2015-1788",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1788"
},
{
"name": "CVE-2015-1792",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1792"
},
{
"name": "CVE-2013-3622",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3622"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2016-7092",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7092"
},
{
"name": "CVE-2015-0204",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0204"
},
{
"name": "CVE-2015-0293",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0293"
},
{
"name": "CVE-2013-4421",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4421"
},
{
"name": "CVE-2015-0287",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0287"
},
{
"name": "CVE-2013-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3608"
},
{
"name": "CVE-2014-8275",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8275"
},
{
"name": "CVE-2015-0205",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0205"
},
{
"name": "CVE-2013-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3620"
},
{
"name": "CVE-2013-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3609"
},
{
"name": "CVE-2015-0209",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0209"
},
{
"name": "CVE-2014-3572",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3572"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3569"
},
{
"name": "CVE-2013-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3607"
},
{
"name": "CVE-2013-3621",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3621"
},
{
"name": "CVE-2013-3623",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3623"
}
],
"links": [],
"reference": "CERTFR-2016-AVI-303",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-09-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Citrix\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et un contournement de la\npolitique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Citrix",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX216071 du 08 septembre 2016",
"url": "http://support.citrix.com/article/CTX216071"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX216642 du 08 septembre 2016",
"url": "http://support.citrix.com/article/CTX216642"
}
]
}
CERTFR-2015-AVI-072
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits IBM. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une élévation de privilèges.
Contournement provisoire
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Tivoli | IBM Tivoli Workload Scheduler 8.x | ||
| IBM | N/A | MegaRAID Storage Management 13.x | ||
| IBM | N/A | IBM Content Collector 3.x | ||
| IBM | N/A | IBM Cúram Social Program Management 6.x | ||
| IBM | N/A | IBM Cloud Manager with OpenStack 4.x | ||
| IBM | N/A | IBM MessageSight 1.x | ||
| IBM | Tivoli | IBM Tivoli Storage Manager Client 6.x | ||
| IBM | N/A | IBM Business Process Manager 7.x | ||
| IBM | Tivoli | IBM Tivoli Storage Manager Client 7.x | ||
| IBM | WebSphere | IBM WebSphere Transformation Extender 8.x | ||
| IBM | N/A | IBM Content Collector for Email 4.x | ||
| IBM | Tivoli | IBM Tivoli Storage Manager Client 5.x | ||
| IBM | N/A | IBM Content Collector 4.x | ||
| IBM | Tivoli | IBM Tivoli Workload Scheduler 9.x | ||
| IBM | N/A | IBM System x Integrated Management Module 2 (IMM2) 4.x |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Tivoli Workload Scheduler 8.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "MegaRAID Storage Management 13.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Content Collector 3.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM C\u00faram Social Program Management 6.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cloud Manager with OpenStack 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM MessageSight 1.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Storage Manager Client 6.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Business Process Manager 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Storage Manager Client 7.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Transformation Extender 8.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Content Collector for Email 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Storage Manager Client 5.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Content Collector 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Workload Scheduler 9.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM System x Integrated Management Module 2 (IMM2) 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2015-0101",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0101"
},
{
"name": "CVE-2014-6512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6512"
},
{
"name": "CVE-2014-7144",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7144"
},
{
"name": "CVE-2014-7230",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7230"
},
{
"name": "CVE-2014-4803",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4803"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2015-0146",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0146"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-0221",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0221"
},
{
"name": "CVE-2014-0195",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0195"
},
{
"name": "CVE-2014-3641",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3641"
},
{
"name": "CVE-2014-6468",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6468"
},
{
"name": "CVE-2014-3513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3513"
},
{
"name": "CVE-2014-0224",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0224"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-0139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0139"
},
{
"name": "CVE-2014-2532",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2532"
},
{
"name": "CVE-2014-0138",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0138"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2014-3470",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3470"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3608"
},
{
"name": "CVE-2014-6414",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6414"
},
{
"name": "CVE-2014-3621",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3621"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2015-0235",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0235"
},
{
"name": "CVE-2013-2174",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2174"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-8373",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8373"
},
{
"name": "CVE-2014-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4813"
},
{
"name": "CVE-2014-0015",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0015"
},
{
"name": "CVE-2014-0198",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0198"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
},
{
"name": "CVE-2014-7231",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7231"
},
{
"name": "CVE-2014-8917",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8917"
},
{
"name": "CVE-2014-5356",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5356"
}
],
"links": [],
"reference": "CERTFR-2015-AVI-072",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2015-02-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits IBM\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer un d\u00e9ni de service \u00e0 distance, un contournement de la\npolitique de s\u00e9curit\u00e9 et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM du 16 f\u00e9vrier 2015",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21693134"
}
]
}
CERTFR-2015-AVI-072
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits IBM. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une élévation de privilèges.
Contournement provisoire
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Tivoli | IBM Tivoli Workload Scheduler 8.x | ||
| IBM | N/A | MegaRAID Storage Management 13.x | ||
| IBM | N/A | IBM Content Collector 3.x | ||
| IBM | N/A | IBM Cúram Social Program Management 6.x | ||
| IBM | N/A | IBM Cloud Manager with OpenStack 4.x | ||
| IBM | N/A | IBM MessageSight 1.x | ||
| IBM | Tivoli | IBM Tivoli Storage Manager Client 6.x | ||
| IBM | N/A | IBM Business Process Manager 7.x | ||
| IBM | Tivoli | IBM Tivoli Storage Manager Client 7.x | ||
| IBM | WebSphere | IBM WebSphere Transformation Extender 8.x | ||
| IBM | N/A | IBM Content Collector for Email 4.x | ||
| IBM | Tivoli | IBM Tivoli Storage Manager Client 5.x | ||
| IBM | N/A | IBM Content Collector 4.x | ||
| IBM | Tivoli | IBM Tivoli Workload Scheduler 9.x | ||
| IBM | N/A | IBM System x Integrated Management Module 2 (IMM2) 4.x |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Tivoli Workload Scheduler 8.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "MegaRAID Storage Management 13.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Content Collector 3.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM C\u00faram Social Program Management 6.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cloud Manager with OpenStack 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM MessageSight 1.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Storage Manager Client 6.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Business Process Manager 7.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Storage Manager Client 7.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Transformation Extender 8.x",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Content Collector for Email 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Storage Manager Client 5.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Content Collector 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Tivoli Workload Scheduler 9.x",
"product": {
"name": "Tivoli",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM System x Integrated Management Module 2 (IMM2) 4.x",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2015-0101",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0101"
},
{
"name": "CVE-2014-6512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6512"
},
{
"name": "CVE-2014-7144",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7144"
},
{
"name": "CVE-2014-7230",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7230"
},
{
"name": "CVE-2014-4803",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4803"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2015-0146",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0146"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-0221",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0221"
},
{
"name": "CVE-2014-0195",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0195"
},
{
"name": "CVE-2014-3641",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3641"
},
{
"name": "CVE-2014-6468",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6468"
},
{
"name": "CVE-2014-3513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3513"
},
{
"name": "CVE-2014-0224",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0224"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-0139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0139"
},
{
"name": "CVE-2014-2532",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2532"
},
{
"name": "CVE-2014-0138",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0138"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2014-3470",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3470"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3608"
},
{
"name": "CVE-2014-6414",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6414"
},
{
"name": "CVE-2014-3621",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3621"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2015-0235",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0235"
},
{
"name": "CVE-2013-2174",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2174"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-8373",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8373"
},
{
"name": "CVE-2014-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4813"
},
{
"name": "CVE-2014-0015",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0015"
},
{
"name": "CVE-2014-0198",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0198"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
},
{
"name": "CVE-2014-7231",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7231"
},
{
"name": "CVE-2014-8917",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8917"
},
{
"name": "CVE-2014-5356",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5356"
}
],
"links": [],
"reference": "CERTFR-2015-AVI-072",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2015-02-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits IBM\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer un d\u00e9ni de service \u00e0 distance, un contournement de la\npolitique de s\u00e9curit\u00e9 et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM du 16 f\u00e9vrier 2015",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21693134"
}
]
}
CERTFR-2014-AVI-449
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans IBM Tivoli Management Framework. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à la confidentialité des données.
Contournement provisoire
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Tivoli Management Framework 4.1.1
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eTivoli Management Framework 4.1.1\u003c/P\u003e",
"content": "## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-3513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3513"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-449",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-10-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eIBM Tivoli Management Framework\u003c/span\u003e. Elles permettent\n\u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance et une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM Tivoli Management Framework",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM du 28 octobre 2014",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21686997"
}
]
}
CERTFR-2014-AVI-412
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS 11 | ||
| Juniper Networks | N/A | JunosE 14 | ||
| Juniper Networks | Junos OS | Junos OS 13 | ||
| Juniper Networks | N/A | JunosE 13 | ||
| Juniper Networks | N/A | JunosE 15 | ||
| Juniper Networks | Junos OS | Junos OS 12 | ||
| Juniper Networks | Junos OS | Junos OS 14 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS 11",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JunosE 14",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS 13",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JunosE 13",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JunosE 15",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS 12",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS 14",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6378"
},
{
"name": "CVE-2014-6379",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6379"
},
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-6377",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6377"
},
{
"name": "CVE-2014-3825",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3825"
},
{
"name": "CVE-2014-6380",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6380"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3818",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3818"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-412",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-10-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eJuniper\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10650 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10652 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10652"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10651 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10651"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10649 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10649"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10653 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10653"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10655 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10655"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10654 du 08 octobre 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10654"
}
]
}
CERTFR-2015-AVI-023
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS | ||
| Juniper Networks | N/A | MX Series | ||
| Juniper Networks | N/A | JSA Series | ||
| Juniper Networks | N/A | STRM Series |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "MX Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "JSA Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "STRM Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-4831",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4831"
},
{
"name": "CVE-2014-0118",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0118"
},
{
"name": "CVE-2014-4829",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4829"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2014-6385",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6385"
},
{
"name": "CVE-2014-6382",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6382"
},
{
"name": "CVE-2014-0453",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0453"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2014-6383",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6383"
},
{
"name": "CVE-2014-6386",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6386"
},
{
"name": "CVE-2014-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4244"
},
{
"name": "CVE-2014-4832",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4832"
},
{
"name": "CVE-2014-5119",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5119"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-6075",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6075"
},
{
"name": "CVE-2014-6384",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6384"
}
],
"links": [],
"reference": "CERTFR-2015-AVI-023",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2015-01-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eJuniper\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10664 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10664"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10670 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10670"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10667 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10667"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10669 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10669"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10665 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10665"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10666 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10666"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10668 du 14 janvier 2015",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10668"
}
]
}
CERTFR-2014-AVI-449
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans IBM Tivoli Management Framework. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à la confidentialité des données.
Contournement provisoire
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Tivoli Management Framework 4.1.1
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eTivoli Management Framework 4.1.1\u003c/P\u003e",
"content": "## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3512"
},
{
"name": "CVE-2014-5139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5139"
},
{
"name": "CVE-2014-3513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3513"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3568"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"name": "CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-449",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-10-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eIBM Tivoli Management Framework\u003c/span\u003e. Elles permettent\n\u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance et une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM Tivoli Management Framework",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM du 28 octobre 2014",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21686997"
}
]
}
CERTFR-2014-AVI-395
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits F5. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BIG-IQ",
"product": {
"name": "BIG-IQ",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "FirePass",
"product": {
"name": "N/A",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "ARX",
"product": {
"name": "N/A",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "Enterprise Manager",
"product": {
"name": "N/A",
"vendor": {
"name": "F5",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"name": "CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"name": "CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"name": "CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-395",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-09-22T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eF5\u003c/span\u003e. Elles permettent \u00e0 un attaquant de provoquer\nun d\u00e9ni de service \u00e0 distance, un contournement de la politique de\ns\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits F5",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 sol15573 du 09 septembre 2014",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15573.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 sol15564 du 05 septembre 2014",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
}
]
}
GSD-2014-3511
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2014-3511",
"description": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"id": "GSD-2014-3511",
"references": [
"https://www.suse.com/security/cve/CVE-2014-3511.html",
"https://www.debian.org/security/2014/dsa-2998",
"https://access.redhat.com/errata/RHSA-2015:0197",
"https://access.redhat.com/errata/RHSA-2015:0126",
"https://access.redhat.com/errata/RHSA-2014:1054",
"https://access.redhat.com/errata/RHSA-2014:1052",
"https://ubuntu.com/security/CVE-2014-3511",
"https://advisories.mageia.org/CVE-2014-3511.html",
"https://alas.aws.amazon.com/cve/html/CVE-2014-3511.html",
"https://linux.oracle.com/cve/CVE-2014-3511.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2014-3511"
],
"details": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"id": "GSD-2014-3511",
"modified": "2023-12-13T01:22:52.904943Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2014-3511",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "openSUSE-SU-2014:1052",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-1052.html",
"refsource": "CONFIRM",
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"name": "60221",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60221"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"name": "61184",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61184"
},
{
"name": "SSRT101846",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "60022",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60022"
},
{
"name": "https://www.openssl.org/news/secadv_20140806.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"name": "61017",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61017"
},
{
"name": "RHSA-2015:0197",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"name": "60377",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60377"
},
{
"name": "SSRT101818",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "59887",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59887"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"name": "HPSBMU03304",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"name": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm",
"refsource": "CONFIRM",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"name": "60890",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60890"
},
{
"name": "GLSA-201412-39",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"name": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html",
"refsource": "CONFIRM",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"name": "HPSBHF03293",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888",
"refsource": "CONFIRM",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"name": "HPSBMU03260",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "60803",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60803"
},
{
"name": "59700",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59700"
},
{
"name": "FEDORA-2014-9308",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"name": "1030693",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1030693"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380",
"refsource": "CONFIRM",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"name": "openssl-cve20143511-sec-bypass(95162)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"name": "http://www.splunk.com/view/SP-CAAANHS",
"refsource": "CONFIRM",
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"name": "60917",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60917"
},
{
"name": "HPSBMU03216",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "http://www.tenable.com/security/tns-2014-06",
"refsource": "CONFIRM",
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"name": "NetBSD-SA2014-008",
"refsource": "NETBSD",
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084",
"refsource": "CONFIRM",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"name": "60493",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60493"
},
{
"name": "59710",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59710"
},
{
"name": "60921",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60921"
},
{
"name": "69079",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/69079"
},
{
"name": "61043",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61043"
},
{
"name": "60810",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60810"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"name": "61100",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61100"
},
{
"name": "FreeBSD-SA-14:18",
"refsource": "FREEBSD",
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"name": "61775",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61775"
},
{
"name": "SSRT101894",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "DSA-2998",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"name": "HPSBMU03263",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"name": "FEDORA-2014-9301",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"name": "61959",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61959"
},
{
"name": "59756",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59756"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"name": "HPSBMU03267",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"name": "HPSBMU03261",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"name": "RHSA-2015:0126",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"name": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc",
"refsource": "CONFIRM",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"name": "58962",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/58962"
},
{
"name": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt",
"refsource": "CONFIRM",
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"name": "60938",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60938"
},
{
"name": "60684",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60684"
},
{
"name": "https://support.citrix.com/article/CTX216642",
"refsource": "CONFIRM",
"url": "https://support.citrix.com/article/CTX216642"
},
{
"name": "[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released",
"refsource": "MLIST",
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"name": "https://techzone.ergon.ch/CVE-2014-3511",
"refsource": "CONFIRM",
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997",
"refsource": "CONFIRM",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"name": "61139",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/61139"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0j:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0k:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0l:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0m:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2014-3511"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b",
"refsource": "CONFIRM",
"tags": [],
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"name": "https://www.openssl.org/news/secadv_20140806.txt",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"name": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"name": "http://www.tenable.com/security/tns-2014-06",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"name": "60810",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60810"
},
{
"name": "59887",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/59887"
},
{
"name": "60377",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60377"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084",
"refsource": "CONFIRM",
"tags": [],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"name": "60917",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60917"
},
{
"name": "NetBSD-SA2014-008",
"refsource": "NETBSD",
"tags": [],
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"name": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc",
"refsource": "CONFIRM",
"tags": [],
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"name": "60938",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60938"
},
{
"name": "60921",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60921"
},
{
"name": "60890",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60890"
},
{
"name": "http://www.splunk.com/view/SP-CAAANHS",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"name": "openSUSE-SU-2014:1052",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"name": "DSA-2998",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"name": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"name": "61775",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61775"
},
{
"name": "61959",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61959"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"name": "59756",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/59756"
},
{
"name": "GLSA-201412-39",
"refsource": "GENTOO",
"tags": [],
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"name": "HPSBMU03260",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"name": "RHSA-2015:0197",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"name": "RHSA-2015:0126",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"name": "SSRT101818",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"name": "HPSBMU03267",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"name": "SSRT101846",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"name": "HPSBMU03304",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888",
"refsource": "CONFIRM",
"tags": [],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380",
"refsource": "CONFIRM",
"tags": [],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"name": "HPSBMU03263",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"name": "HPSBMU03261",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"name": "FreeBSD-SA-14:18",
"refsource": "FREEBSD",
"tags": [],
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"name": "https://techzone.ergon.ch/CVE-2014-3511",
"refsource": "CONFIRM",
"tags": [],
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"name": "[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"name": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"name": "1030693",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1030693"
},
{
"name": "69079",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/69079"
},
{
"name": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"name": "61184",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61184"
},
{
"name": "61139",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61139"
},
{
"name": "61100",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61100"
},
{
"name": "61043",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61043"
},
{
"name": "61017",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/61017"
},
{
"name": "60803",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60803"
},
{
"name": "60684",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60684"
},
{
"name": "60493",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60493"
},
{
"name": "60221",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60221"
},
{
"name": "60022",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60022"
},
{
"name": "59710",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/59710"
},
{
"name": "59700",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/59700"
},
{
"name": "58962",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/58962"
},
{
"name": "FEDORA-2014-9308",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"name": "FEDORA-2014-9301",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-1052.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"name": "openssl-cve20143511-sec-bypass(95162)",
"refsource": "XF",
"tags": [],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"name": "https://support.citrix.com/article/CTX216642",
"refsource": "CONFIRM",
"tags": [],
"url": "https://support.citrix.com/article/CTX216642"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
}
},
"lastModifiedDate": "2017-11-15T02:29Z",
"publishedDate": "2014-08-13T23:55Z"
}
}
}
SUSE-SU-2015:1185-1
Vulnerability from csaf_suse - Published: 2014-10-22 23:22 - Updated: 2014-10-22 23:22Summary
Security update for openssl1
Notes
Title of the patch
Security update for openssl1
Description of the patch
This OpenSSL update fixes the following issues:
* SRTP Memory Leak (CVE-2014-3513)
* Session Ticket Memory Leak (CVE-2014-3567)
* Build option no-ssl3 is incomplete (CVE-2014-3568)
* Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)
Security Issues:
* CVE-2014-3513
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513>
* CVE-2014-3567
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567>
* CVE-2014-3566
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566>
* CVE-2014-3568
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568>
Patchnames
secsp3-libopenssl1-devel
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis OpenSSL update fixes the following issues:\n\n * SRTP Memory Leak (CVE-2014-3513)\n * Session Ticket Memory Leak (CVE-2014-3567)\n * Build option no-ssl3 is incomplete (CVE-2014-3568)\n * Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)\n\nSecurity Issues:\n\n * CVE-2014-3513\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513\u003e\n * CVE-2014-3567\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567\u003e\n * CVE-2014-3566\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\u003e\n * CVE-2014-3568\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "secsp3-libopenssl1-devel",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1185-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:1185-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20151185-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:1185-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-July/001478.html"
},
{
"category": "self",
"summary": "SUSE Bug 860332",
"url": "https://bugzilla.suse.com/860332"
},
{
"category": "self",
"summary": "SUSE Bug 861014",
"url": "https://bugzilla.suse.com/861014"
},
{
"category": "self",
"summary": "SUSE Bug 864912",
"url": "https://bugzilla.suse.com/864912"
},
{
"category": "self",
"summary": "SUSE Bug 869945",
"url": "https://bugzilla.suse.com/869945"
},
{
"category": "self",
"summary": "SUSE Bug 872299",
"url": "https://bugzilla.suse.com/872299"
},
{
"category": "self",
"summary": "SUSE Bug 873351",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "self",
"summary": "SUSE Bug 876282",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "self",
"summary": "SUSE Bug 880891",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "self",
"summary": "SUSE Bug 889812",
"url": "https://bugzilla.suse.com/889812"
},
{
"category": "self",
"summary": "SUSE Bug 890764",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "self",
"summary": "SUSE Bug 890767",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "self",
"summary": "SUSE Bug 890768",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "self",
"summary": "SUSE Bug 890769",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "self",
"summary": "SUSE Bug 890770",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "self",
"summary": "SUSE Bug 901223",
"url": "https://bugzilla.suse.com/901223"
},
{
"category": "self",
"summary": "SUSE Bug 901277",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "self",
"summary": "SUSE Bug 906878",
"url": "https://bugzilla.suse.com/906878"
},
{
"category": "self",
"summary": "SUSE Bug 912014",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "self",
"summary": "SUSE Bug 912015",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "self",
"summary": "SUSE Bug 912018",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "self",
"summary": "SUSE Bug 912292",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "self",
"summary": "SUSE Bug 912293",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "self",
"summary": "SUSE Bug 912294",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "self",
"summary": "SUSE Bug 912296",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "self",
"summary": "SUSE Bug 919648",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "self",
"summary": "SUSE Bug 920236",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "self",
"summary": "SUSE Bug 922488",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "self",
"summary": "SUSE Bug 922496",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "self",
"summary": "SUSE Bug 922499",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "self",
"summary": "SUSE Bug 922500",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "self",
"summary": "SUSE Bug 922501",
"url": "https://bugzilla.suse.com/922501"
},
{
"category": "self",
"summary": "SUSE Bug 923384",
"url": "https://bugzilla.suse.com/923384"
},
{
"category": "self",
"summary": "SUSE Bug 929678",
"url": "https://bugzilla.suse.com/929678"
},
{
"category": "self",
"summary": "SUSE Bug 931698",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "self",
"summary": "SUSE Bug 933911",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "self",
"summary": "SUSE Bug 934487",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "self",
"summary": "SUSE Bug 934489",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "self",
"summary": "SUSE Bug 934491",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "self",
"summary": "SUSE Bug 934493",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "self",
"summary": "SUSE Bug 934494",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-5298 page",
"url": "https://www.suse.com/security/cve/CVE-2010-5298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0160 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0195 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0198 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0221 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0224 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3470 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3505 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3513 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3566 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3567 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3568 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8176 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0204 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0292 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0293 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1791 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-4000 page",
"url": "https://www.suse.com/security/cve/CVE-2015-4000/"
}
],
"title": "Security update for openssl1",
"tracking": {
"current_release_date": "2014-10-22T23:22:56Z",
"generator": {
"date": "2014-10-22T23:22:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:1185-1",
"initial_release_date": "2014-10-22T23:22:56Z",
"revision_history": [
{
"date": "2014-10-22T23:22:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.i586",
"product": {
"name": "openssl1-1.0.1g-0.22.1.i586",
"product_id": "openssl1-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.i586",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.i586",
"product_id": "openssl1-doc-1.0.1g-0.22.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.ia64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.ia64",
"product_id": "openssl1-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.ia64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.ia64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.ppc64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.ppc64",
"product_id": "openssl1-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.s390x",
"product": {
"name": "openssl1-1.0.1g-0.22.1.s390x",
"product_id": "openssl1-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.s390x",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.s390x",
"product_id": "openssl1-doc-1.0.1g-0.22.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.x86_64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.x86_64",
"product_id": "openssl1-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product": {
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:security"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586"
},
"product_reference": "openssl1-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x"
},
"product_reference": "openssl1-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2010-5298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-5298"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-5298",
"url": "https://www.suse.com/security/cve/CVE-2010-5298"
},
{
"category": "external",
"summary": "SUSE Bug 873351 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "low"
}
],
"title": "CVE-2010-5298"
},
{
"cve": "CVE-2014-0160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0160"
}
],
"notes": [
{
"category": "general",
"text": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0160",
"url": "https://www.suse.com/security/cve/CVE-2014-0160"
},
{
"category": "external",
"summary": "SUSE Bug 872299 for CVE-2014-0160",
"url": "https://bugzilla.suse.com/872299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-0160"
},
{
"cve": "CVE-2014-0195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0195"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0195",
"url": "https://www.suse.com/security/cve/CVE-2014-0195"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0195"
},
{
"cve": "CVE-2014-0198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0198"
}
],
"notes": [
{
"category": "general",
"text": "The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0198",
"url": "https://www.suse.com/security/cve/CVE-2014-0198"
},
{
"category": "external",
"summary": "SUSE Bug 876282 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0198"
},
{
"cve": "CVE-2014-0221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0221"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0221",
"url": "https://www.suse.com/security/cve/CVE-2014-0221"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0221"
},
{
"cve": "CVE-2014-0224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0224"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0224",
"url": "https://www.suse.com/security/cve/CVE-2014-0224"
},
{
"category": "external",
"summary": "SUSE Bug 1146657 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/1146657"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 881743 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/881743"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 892403 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/892403"
},
{
"category": "external",
"summary": "SUSE Bug 901237 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/901237"
},
{
"category": "external",
"summary": "SUSE Bug 903703 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/903703"
},
{
"category": "external",
"summary": "SUSE Bug 905018 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905018"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914447 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/914447"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/915913"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/916239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-0224"
},
{
"cve": "CVE-2014-3470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3470"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3470",
"url": "https://www.suse.com/security/cve/CVE-2014-3470"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3470"
},
{
"cve": "CVE-2014-3505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3505"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3505",
"url": "https://www.suse.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890767 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3513"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3513",
"url": "https://www.suse.com/security/cve/CVE-2014-3513"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3513",
"url": "https://bugzilla.suse.com/901277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3513"
},
{
"cve": "CVE-2014-3566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3566"
}
],
"notes": [
{
"category": "general",
"text": "The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the \"POODLE\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3566",
"url": "https://www.suse.com/security/cve/CVE-2014-3566"
},
{
"category": "external",
"summary": "SUSE Bug 1011293 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/1011293"
},
{
"category": "external",
"summary": "SUSE Bug 1031023 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/1031023"
},
{
"category": "external",
"summary": "SUSE Bug 901223 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901223"
},
{
"category": "external",
"summary": "SUSE Bug 901254 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901254"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 901748 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901748"
},
{
"category": "external",
"summary": "SUSE Bug 901757 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901757"
},
{
"category": "external",
"summary": "SUSE Bug 901759 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901759"
},
{
"category": "external",
"summary": "SUSE Bug 901889 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901889"
},
{
"category": "external",
"summary": "SUSE Bug 901968 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901968"
},
{
"category": "external",
"summary": "SUSE Bug 902229 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902229"
},
{
"category": "external",
"summary": "SUSE Bug 902233 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902233"
},
{
"category": "external",
"summary": "SUSE Bug 902476 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902476"
},
{
"category": "external",
"summary": "SUSE Bug 903405 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/903405"
},
{
"category": "external",
"summary": "SUSE Bug 903684 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/903684"
},
{
"category": "external",
"summary": "SUSE Bug 904889 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/904889"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914041 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/914041"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.4,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2014-3566"
},
{
"cve": "CVE-2014-3567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3567"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3567",
"url": "https://www.suse.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "SUSE Bug 877506 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/877506"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3567"
},
{
"cve": "CVE-2014-3568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3568"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3568",
"url": "https://www.suse.com/security/cve/CVE-2014-3568"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3568"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3571"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3571",
"url": "https://www.suse.com/security/cve/CVE-2014-3571"
},
{
"category": "external",
"summary": "SUSE Bug 912294 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/927623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3571"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8176"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8176",
"url": "https://www.suse.com/security/cve/CVE-2014-8176"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/1148697"
},
{
"category": "external",
"summary": "SUSE Bug 934494 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-8176"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0204"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the \"FREAK\" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0204",
"url": "https://www.suse.com/security/cve/CVE-2015-0204"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 920482 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920482"
},
{
"category": "external",
"summary": "SUSE Bug 920484 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920484"
},
{
"category": "external",
"summary": "SUSE Bug 927591 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927591"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 936787 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/936787"
},
{
"category": "external",
"summary": "SUSE Bug 952088 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/952088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0204"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-0292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0292"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the EVP_DecodeUpdate function in crypto/evp/encode.c in the base64-decoding implementation in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted base64 data that triggers a buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0292",
"url": "https://www.suse.com/security/cve/CVE-2015-0292"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922501 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/922501"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/936586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0292"
},
{
"cve": "CVE-2015-0293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0293"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0293",
"url": "https://www.suse.com/security/cve/CVE-2015-0293"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922488 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968051 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968051"
},
{
"category": "external",
"summary": "SUSE Bug 968053 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968053"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0293"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1791"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1791",
"url": "https://www.suse.com/security/cve/CVE-2015-1791"
},
{
"category": "external",
"summary": "SUSE Bug 933911 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/986238"
},
{
"category": "external",
"summary": "SUSE Bug 989464 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/989464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1791"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-4000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-4000"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-4000",
"url": "https://www.suse.com/security/cve/CVE-2015-4000"
},
{
"category": "external",
"summary": "SUSE Bug 1074631 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1074631"
},
{
"category": "external",
"summary": "SUSE Bug 1211968 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1211968"
},
{
"category": "external",
"summary": "SUSE Bug 931600 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931600"
},
{
"category": "external",
"summary": "SUSE Bug 931698 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "external",
"summary": "SUSE Bug 931723 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931723"
},
{
"category": "external",
"summary": "SUSE Bug 931845 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931845"
},
{
"category": "external",
"summary": "SUSE Bug 932026 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932026"
},
{
"category": "external",
"summary": "SUSE Bug 932483 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932483"
},
{
"category": "external",
"summary": "SUSE Bug 934789 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/934789"
},
{
"category": "external",
"summary": "SUSE Bug 935033 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935033"
},
{
"category": "external",
"summary": "SUSE Bug 935540 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935540"
},
{
"category": "external",
"summary": "SUSE Bug 935979 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935979"
},
{
"category": "external",
"summary": "SUSE Bug 937202 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937202"
},
{
"category": "external",
"summary": "SUSE Bug 937766 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937766"
},
{
"category": "external",
"summary": "SUSE Bug 938248 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938248"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 938895 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938895"
},
{
"category": "external",
"summary": "SUSE Bug 938905 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938905"
},
{
"category": "external",
"summary": "SUSE Bug 938906 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938906"
},
{
"category": "external",
"summary": "SUSE Bug 938913 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938913"
},
{
"category": "external",
"summary": "SUSE Bug 938945 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938945"
},
{
"category": "external",
"summary": "SUSE Bug 943664 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/943664"
},
{
"category": "external",
"summary": "SUSE Bug 944729 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/944729"
},
{
"category": "external",
"summary": "SUSE Bug 945582 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/945582"
},
{
"category": "external",
"summary": "SUSE Bug 955589 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/955589"
},
{
"category": "external",
"summary": "SUSE Bug 980406 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/980406"
},
{
"category": "external",
"summary": "SUSE Bug 990592 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/990592"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2015-4000"
}
]
}
SUSE-SU-2015:0546-1
Vulnerability from csaf_suse - Published: 2014-10-22 23:22 - Updated: 2014-10-22 23:22Summary
Security update for openssl1
Notes
Title of the patch
Security update for openssl1
Description of the patch
This OpenSSL update fixes the following issues:
* SRTP Memory Leak (CVE-2014-3513)
* Session Ticket Memory Leak (CVE-2014-3567)
* Build option no-ssl3 is incomplete (CVE-2014-3568)
* Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)
Security Issues:
* CVE-2014-3513
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513>
* CVE-2014-3567
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567>
* CVE-2014-3566
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566>
* CVE-2014-3568
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568>
Patchnames
secsp3-libopenssl1-devel
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis OpenSSL update fixes the following issues:\n\n * SRTP Memory Leak (CVE-2014-3513)\n * Session Ticket Memory Leak (CVE-2014-3567)\n * Build option no-ssl3 is incomplete (CVE-2014-3568)\n * Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)\n\nSecurity Issues:\n\n * CVE-2014-3513\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513\u003e\n * CVE-2014-3567\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567\u003e\n * CVE-2014-3566\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\u003e\n * CVE-2014-3568\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "secsp3-libopenssl1-devel",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0546-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0546-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150546-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0546-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-March/001300.html"
},
{
"category": "self",
"summary": "SUSE Bug 860332",
"url": "https://bugzilla.suse.com/860332"
},
{
"category": "self",
"summary": "SUSE Bug 861014",
"url": "https://bugzilla.suse.com/861014"
},
{
"category": "self",
"summary": "SUSE Bug 864912",
"url": "https://bugzilla.suse.com/864912"
},
{
"category": "self",
"summary": "SUSE Bug 869945",
"url": "https://bugzilla.suse.com/869945"
},
{
"category": "self",
"summary": "SUSE Bug 872299",
"url": "https://bugzilla.suse.com/872299"
},
{
"category": "self",
"summary": "SUSE Bug 873351",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "self",
"summary": "SUSE Bug 876282",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "self",
"summary": "SUSE Bug 880891",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "self",
"summary": "SUSE Bug 889812",
"url": "https://bugzilla.suse.com/889812"
},
{
"category": "self",
"summary": "SUSE Bug 890764",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "self",
"summary": "SUSE Bug 890767",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "self",
"summary": "SUSE Bug 890768",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "self",
"summary": "SUSE Bug 890769",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "self",
"summary": "SUSE Bug 890770",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "self",
"summary": "SUSE Bug 901223",
"url": "https://bugzilla.suse.com/901223"
},
{
"category": "self",
"summary": "SUSE Bug 901277",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "self",
"summary": "SUSE Bug 906878",
"url": "https://bugzilla.suse.com/906878"
},
{
"category": "self",
"summary": "SUSE Bug 912014",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "self",
"summary": "SUSE Bug 912015",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "self",
"summary": "SUSE Bug 912018",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "self",
"summary": "SUSE Bug 912292",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "self",
"summary": "SUSE Bug 912293",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "self",
"summary": "SUSE Bug 912294",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "self",
"summary": "SUSE Bug 912296",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "self",
"summary": "SUSE Bug 919648",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "self",
"summary": "SUSE Bug 920236",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "self",
"summary": "SUSE Bug 922488",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "self",
"summary": "SUSE Bug 922496",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "self",
"summary": "SUSE Bug 922499",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "self",
"summary": "SUSE Bug 922500",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "self",
"summary": "SUSE Bug 922501",
"url": "https://bugzilla.suse.com/922501"
},
{
"category": "self",
"summary": "SUSE Bug 923384",
"url": "https://bugzilla.suse.com/923384"
},
{
"category": "self",
"summary": "SUSE Bug 929678",
"url": "https://bugzilla.suse.com/929678"
},
{
"category": "self",
"summary": "SUSE Bug 931698",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "self",
"summary": "SUSE Bug 933911",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "self",
"summary": "SUSE Bug 934487",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "self",
"summary": "SUSE Bug 934489",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "self",
"summary": "SUSE Bug 934491",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "self",
"summary": "SUSE Bug 934493",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "self",
"summary": "SUSE Bug 934494",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-5298 page",
"url": "https://www.suse.com/security/cve/CVE-2010-5298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0160 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0195 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0198 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0221 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0224 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3470 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3505 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3513 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3566 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3567 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3568 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8176 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0204 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0292 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0293 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1791 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-4000 page",
"url": "https://www.suse.com/security/cve/CVE-2015-4000/"
}
],
"title": "Security update for openssl1",
"tracking": {
"current_release_date": "2014-10-22T23:22:56Z",
"generator": {
"date": "2014-10-22T23:22:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0546-1",
"initial_release_date": "2014-10-22T23:22:56Z",
"revision_history": [
{
"date": "2014-10-22T23:22:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.i586",
"product": {
"name": "openssl1-1.0.1g-0.22.1.i586",
"product_id": "openssl1-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.i586",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.i586",
"product_id": "openssl1-doc-1.0.1g-0.22.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.ia64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.ia64",
"product_id": "openssl1-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.ia64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.ia64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.ppc64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.ppc64",
"product_id": "openssl1-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.s390x",
"product": {
"name": "openssl1-1.0.1g-0.22.1.s390x",
"product_id": "openssl1-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.s390x",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.s390x",
"product_id": "openssl1-doc-1.0.1g-0.22.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.x86_64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.x86_64",
"product_id": "openssl1-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product": {
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:security"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586"
},
"product_reference": "openssl1-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x"
},
"product_reference": "openssl1-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2010-5298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-5298"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-5298",
"url": "https://www.suse.com/security/cve/CVE-2010-5298"
},
{
"category": "external",
"summary": "SUSE Bug 873351 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "low"
}
],
"title": "CVE-2010-5298"
},
{
"cve": "CVE-2014-0160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0160"
}
],
"notes": [
{
"category": "general",
"text": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0160",
"url": "https://www.suse.com/security/cve/CVE-2014-0160"
},
{
"category": "external",
"summary": "SUSE Bug 872299 for CVE-2014-0160",
"url": "https://bugzilla.suse.com/872299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-0160"
},
{
"cve": "CVE-2014-0195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0195"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0195",
"url": "https://www.suse.com/security/cve/CVE-2014-0195"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0195"
},
{
"cve": "CVE-2014-0198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0198"
}
],
"notes": [
{
"category": "general",
"text": "The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0198",
"url": "https://www.suse.com/security/cve/CVE-2014-0198"
},
{
"category": "external",
"summary": "SUSE Bug 876282 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0198"
},
{
"cve": "CVE-2014-0221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0221"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0221",
"url": "https://www.suse.com/security/cve/CVE-2014-0221"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0221"
},
{
"cve": "CVE-2014-0224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0224"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0224",
"url": "https://www.suse.com/security/cve/CVE-2014-0224"
},
{
"category": "external",
"summary": "SUSE Bug 1146657 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/1146657"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 881743 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/881743"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 892403 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/892403"
},
{
"category": "external",
"summary": "SUSE Bug 901237 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/901237"
},
{
"category": "external",
"summary": "SUSE Bug 903703 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/903703"
},
{
"category": "external",
"summary": "SUSE Bug 905018 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905018"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914447 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/914447"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/915913"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/916239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-0224"
},
{
"cve": "CVE-2014-3470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3470"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3470",
"url": "https://www.suse.com/security/cve/CVE-2014-3470"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3470"
},
{
"cve": "CVE-2014-3505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3505"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3505",
"url": "https://www.suse.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890767 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3513"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3513",
"url": "https://www.suse.com/security/cve/CVE-2014-3513"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3513",
"url": "https://bugzilla.suse.com/901277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3513"
},
{
"cve": "CVE-2014-3566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3566"
}
],
"notes": [
{
"category": "general",
"text": "The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the \"POODLE\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3566",
"url": "https://www.suse.com/security/cve/CVE-2014-3566"
},
{
"category": "external",
"summary": "SUSE Bug 1011293 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/1011293"
},
{
"category": "external",
"summary": "SUSE Bug 1031023 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/1031023"
},
{
"category": "external",
"summary": "SUSE Bug 901223 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901223"
},
{
"category": "external",
"summary": "SUSE Bug 901254 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901254"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 901748 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901748"
},
{
"category": "external",
"summary": "SUSE Bug 901757 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901757"
},
{
"category": "external",
"summary": "SUSE Bug 901759 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901759"
},
{
"category": "external",
"summary": "SUSE Bug 901889 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901889"
},
{
"category": "external",
"summary": "SUSE Bug 901968 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901968"
},
{
"category": "external",
"summary": "SUSE Bug 902229 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902229"
},
{
"category": "external",
"summary": "SUSE Bug 902233 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902233"
},
{
"category": "external",
"summary": "SUSE Bug 902476 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902476"
},
{
"category": "external",
"summary": "SUSE Bug 903405 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/903405"
},
{
"category": "external",
"summary": "SUSE Bug 903684 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/903684"
},
{
"category": "external",
"summary": "SUSE Bug 904889 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/904889"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914041 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/914041"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.4,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2014-3566"
},
{
"cve": "CVE-2014-3567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3567"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3567",
"url": "https://www.suse.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "SUSE Bug 877506 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/877506"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3567"
},
{
"cve": "CVE-2014-3568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3568"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3568",
"url": "https://www.suse.com/security/cve/CVE-2014-3568"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3568"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3571"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3571",
"url": "https://www.suse.com/security/cve/CVE-2014-3571"
},
{
"category": "external",
"summary": "SUSE Bug 912294 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/927623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3571"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8176"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8176",
"url": "https://www.suse.com/security/cve/CVE-2014-8176"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/1148697"
},
{
"category": "external",
"summary": "SUSE Bug 934494 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-8176"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0204"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the \"FREAK\" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0204",
"url": "https://www.suse.com/security/cve/CVE-2015-0204"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 920482 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920482"
},
{
"category": "external",
"summary": "SUSE Bug 920484 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920484"
},
{
"category": "external",
"summary": "SUSE Bug 927591 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927591"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 936787 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/936787"
},
{
"category": "external",
"summary": "SUSE Bug 952088 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/952088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0204"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-0292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0292"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the EVP_DecodeUpdate function in crypto/evp/encode.c in the base64-decoding implementation in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted base64 data that triggers a buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0292",
"url": "https://www.suse.com/security/cve/CVE-2015-0292"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922501 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/922501"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/936586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0292"
},
{
"cve": "CVE-2015-0293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0293"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0293",
"url": "https://www.suse.com/security/cve/CVE-2015-0293"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922488 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968051 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968051"
},
{
"category": "external",
"summary": "SUSE Bug 968053 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968053"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0293"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1791"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1791",
"url": "https://www.suse.com/security/cve/CVE-2015-1791"
},
{
"category": "external",
"summary": "SUSE Bug 933911 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/986238"
},
{
"category": "external",
"summary": "SUSE Bug 989464 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/989464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1791"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-4000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-4000"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-4000",
"url": "https://www.suse.com/security/cve/CVE-2015-4000"
},
{
"category": "external",
"summary": "SUSE Bug 1074631 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1074631"
},
{
"category": "external",
"summary": "SUSE Bug 1211968 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1211968"
},
{
"category": "external",
"summary": "SUSE Bug 931600 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931600"
},
{
"category": "external",
"summary": "SUSE Bug 931698 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "external",
"summary": "SUSE Bug 931723 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931723"
},
{
"category": "external",
"summary": "SUSE Bug 931845 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931845"
},
{
"category": "external",
"summary": "SUSE Bug 932026 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932026"
},
{
"category": "external",
"summary": "SUSE Bug 932483 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932483"
},
{
"category": "external",
"summary": "SUSE Bug 934789 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/934789"
},
{
"category": "external",
"summary": "SUSE Bug 935033 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935033"
},
{
"category": "external",
"summary": "SUSE Bug 935540 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935540"
},
{
"category": "external",
"summary": "SUSE Bug 935979 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935979"
},
{
"category": "external",
"summary": "SUSE Bug 937202 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937202"
},
{
"category": "external",
"summary": "SUSE Bug 937766 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937766"
},
{
"category": "external",
"summary": "SUSE Bug 938248 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938248"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 938895 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938895"
},
{
"category": "external",
"summary": "SUSE Bug 938905 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938905"
},
{
"category": "external",
"summary": "SUSE Bug 938906 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938906"
},
{
"category": "external",
"summary": "SUSE Bug 938913 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938913"
},
{
"category": "external",
"summary": "SUSE Bug 938945 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938945"
},
{
"category": "external",
"summary": "SUSE Bug 943664 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/943664"
},
{
"category": "external",
"summary": "SUSE Bug 944729 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/944729"
},
{
"category": "external",
"summary": "SUSE Bug 945582 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/945582"
},
{
"category": "external",
"summary": "SUSE Bug 955589 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/955589"
},
{
"category": "external",
"summary": "SUSE Bug 980406 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/980406"
},
{
"category": "external",
"summary": "SUSE Bug 990592 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/990592"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2015-4000"
}
]
}
SUSE-RU-2015:0769-1
Vulnerability from csaf_suse - Published: 2014-10-22 23:22 - Updated: 2014-10-22 23:22Summary
Security update for openssl1
Notes
Title of the patch
Security update for openssl1
Description of the patch
This OpenSSL update fixes the following issues:
* SRTP Memory Leak (CVE-2014-3513)
* Session Ticket Memory Leak (CVE-2014-3567)
* Build option no-ssl3 is incomplete (CVE-2014-3568)
* Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)
Security Issues:
* CVE-2014-3513
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513>
* CVE-2014-3567
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567>
* CVE-2014-3566
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566>
* CVE-2014-3568
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568>
Patchnames
secsp3-libopenssl1-devel
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis OpenSSL update fixes the following issues:\n\n * SRTP Memory Leak (CVE-2014-3513)\n * Session Ticket Memory Leak (CVE-2014-3567)\n * Build option no-ssl3 is incomplete (CVE-2014-3568)\n * Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE)\n\nSecurity Issues:\n\n * CVE-2014-3513\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513\u003e\n * CVE-2014-3567\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567\u003e\n * CVE-2014-3566\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\u003e\n * CVE-2014-3568\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "secsp3-libopenssl1-devel",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-ru-2015_0769-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-RU-2015:0769-1",
"url": "https://www.suse.com/support/update/announcement//suse-ru-20150769-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-RU-2015:0769-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2015-April/002912.html"
},
{
"category": "self",
"summary": "SUSE Bug 860332",
"url": "https://bugzilla.suse.com/860332"
},
{
"category": "self",
"summary": "SUSE Bug 861014",
"url": "https://bugzilla.suse.com/861014"
},
{
"category": "self",
"summary": "SUSE Bug 864912",
"url": "https://bugzilla.suse.com/864912"
},
{
"category": "self",
"summary": "SUSE Bug 869945",
"url": "https://bugzilla.suse.com/869945"
},
{
"category": "self",
"summary": "SUSE Bug 872299",
"url": "https://bugzilla.suse.com/872299"
},
{
"category": "self",
"summary": "SUSE Bug 873351",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "self",
"summary": "SUSE Bug 876282",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "self",
"summary": "SUSE Bug 880891",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "self",
"summary": "SUSE Bug 889812",
"url": "https://bugzilla.suse.com/889812"
},
{
"category": "self",
"summary": "SUSE Bug 890764",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "self",
"summary": "SUSE Bug 890767",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "self",
"summary": "SUSE Bug 890768",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "self",
"summary": "SUSE Bug 890769",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "self",
"summary": "SUSE Bug 890770",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "self",
"summary": "SUSE Bug 901223",
"url": "https://bugzilla.suse.com/901223"
},
{
"category": "self",
"summary": "SUSE Bug 901277",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "self",
"summary": "SUSE Bug 906878",
"url": "https://bugzilla.suse.com/906878"
},
{
"category": "self",
"summary": "SUSE Bug 912014",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "self",
"summary": "SUSE Bug 912015",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "self",
"summary": "SUSE Bug 912018",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "self",
"summary": "SUSE Bug 912292",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "self",
"summary": "SUSE Bug 912293",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "self",
"summary": "SUSE Bug 912294",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "self",
"summary": "SUSE Bug 912296",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "self",
"summary": "SUSE Bug 919648",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "self",
"summary": "SUSE Bug 920236",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "self",
"summary": "SUSE Bug 922488",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "self",
"summary": "SUSE Bug 922496",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "self",
"summary": "SUSE Bug 922499",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "self",
"summary": "SUSE Bug 922500",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "self",
"summary": "SUSE Bug 922501",
"url": "https://bugzilla.suse.com/922501"
},
{
"category": "self",
"summary": "SUSE Bug 923384",
"url": "https://bugzilla.suse.com/923384"
},
{
"category": "self",
"summary": "SUSE Bug 929678",
"url": "https://bugzilla.suse.com/929678"
},
{
"category": "self",
"summary": "SUSE Bug 931698",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "self",
"summary": "SUSE Bug 933911",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "self",
"summary": "SUSE Bug 934487",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "self",
"summary": "SUSE Bug 934489",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "self",
"summary": "SUSE Bug 934491",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "self",
"summary": "SUSE Bug 934493",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "self",
"summary": "SUSE Bug 934494",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-5298 page",
"url": "https://www.suse.com/security/cve/CVE-2010-5298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0160 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0195 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0198 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0221 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0224 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3470 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3505 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3513 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3566 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3567 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3568 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8176 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0204 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0292 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0293 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1791 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-4000 page",
"url": "https://www.suse.com/security/cve/CVE-2015-4000/"
}
],
"title": "Security update for openssl1",
"tracking": {
"current_release_date": "2014-10-22T23:22:56Z",
"generator": {
"date": "2014-10-22T23:22:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-RU-2015:0769-1",
"initial_release_date": "2014-10-22T23:22:56Z",
"revision_history": [
{
"date": "2014-10-22T23:22:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.i586",
"product": {
"name": "openssl1-1.0.1g-0.22.1.i586",
"product_id": "openssl1-1.0.1g-0.22.1.i586"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.i586",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.i586",
"product_id": "openssl1-doc-1.0.1g-0.22.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"product": {
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"product_id": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.ia64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.ia64",
"product_id": "openssl1-1.0.1g-0.22.1.ia64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.ia64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.ia64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.ppc64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.ppc64",
"product_id": "openssl1-1.0.1g-0.22.1.ppc64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.s390x",
"product": {
"name": "openssl1-1.0.1g-0.22.1.s390x",
"product_id": "openssl1-1.0.1g-0.22.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.s390x",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.s390x",
"product_id": "openssl1-doc-1.0.1g-0.22.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1-devel-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"product_id": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl1-1.0.1g-0.22.1.x86_64",
"product": {
"name": "openssl1-1.0.1g-0.22.1.x86_64",
"product_id": "openssl1-1.0.1g-0.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"product": {
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"product_id": "openssl1-doc-1.0.1g-0.22.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product": {
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:security"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1-devel-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64"
},
"product_reference": "libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586"
},
"product_reference": "openssl1-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x"
},
"product_reference": "openssl1-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64"
},
"product_reference": "openssl1-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl1-doc-1.0.1g-0.22.1.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
},
"product_reference": "openssl1-doc-1.0.1g-0.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2010-5298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-5298"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-5298",
"url": "https://www.suse.com/security/cve/CVE-2010-5298"
},
{
"category": "external",
"summary": "SUSE Bug 873351 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "low"
}
],
"title": "CVE-2010-5298"
},
{
"cve": "CVE-2014-0160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0160"
}
],
"notes": [
{
"category": "general",
"text": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0160",
"url": "https://www.suse.com/security/cve/CVE-2014-0160"
},
{
"category": "external",
"summary": "SUSE Bug 872299 for CVE-2014-0160",
"url": "https://bugzilla.suse.com/872299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-0160"
},
{
"cve": "CVE-2014-0195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0195"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0195",
"url": "https://www.suse.com/security/cve/CVE-2014-0195"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0195"
},
{
"cve": "CVE-2014-0198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0198"
}
],
"notes": [
{
"category": "general",
"text": "The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0198",
"url": "https://www.suse.com/security/cve/CVE-2014-0198"
},
{
"category": "external",
"summary": "SUSE Bug 876282 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0198"
},
{
"cve": "CVE-2014-0221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0221"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0221",
"url": "https://www.suse.com/security/cve/CVE-2014-0221"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-0221"
},
{
"cve": "CVE-2014-0224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0224"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0224",
"url": "https://www.suse.com/security/cve/CVE-2014-0224"
},
{
"category": "external",
"summary": "SUSE Bug 1146657 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/1146657"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 881743 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/881743"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 892403 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/892403"
},
{
"category": "external",
"summary": "SUSE Bug 901237 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/901237"
},
{
"category": "external",
"summary": "SUSE Bug 903703 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/903703"
},
{
"category": "external",
"summary": "SUSE Bug 905018 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905018"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914447 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/914447"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/915913"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/916239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-0224"
},
{
"cve": "CVE-2014-3470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3470"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3470",
"url": "https://www.suse.com/security/cve/CVE-2014-3470"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3470"
},
{
"cve": "CVE-2014-3505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3505"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3505",
"url": "https://www.suse.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890767 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3513"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3513",
"url": "https://www.suse.com/security/cve/CVE-2014-3513"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3513",
"url": "https://bugzilla.suse.com/901277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3513"
},
{
"cve": "CVE-2014-3566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3566"
}
],
"notes": [
{
"category": "general",
"text": "The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the \"POODLE\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3566",
"url": "https://www.suse.com/security/cve/CVE-2014-3566"
},
{
"category": "external",
"summary": "SUSE Bug 1011293 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/1011293"
},
{
"category": "external",
"summary": "SUSE Bug 1031023 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/1031023"
},
{
"category": "external",
"summary": "SUSE Bug 901223 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901223"
},
{
"category": "external",
"summary": "SUSE Bug 901254 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901254"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 901748 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901748"
},
{
"category": "external",
"summary": "SUSE Bug 901757 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901757"
},
{
"category": "external",
"summary": "SUSE Bug 901759 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901759"
},
{
"category": "external",
"summary": "SUSE Bug 901889 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901889"
},
{
"category": "external",
"summary": "SUSE Bug 901968 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/901968"
},
{
"category": "external",
"summary": "SUSE Bug 902229 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902229"
},
{
"category": "external",
"summary": "SUSE Bug 902233 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902233"
},
{
"category": "external",
"summary": "SUSE Bug 902476 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/902476"
},
{
"category": "external",
"summary": "SUSE Bug 903405 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/903405"
},
{
"category": "external",
"summary": "SUSE Bug 903684 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/903684"
},
{
"category": "external",
"summary": "SUSE Bug 904889 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/904889"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914041 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/914041"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2014-3566",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.4,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2014-3566"
},
{
"cve": "CVE-2014-3567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3567"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3567",
"url": "https://www.suse.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "SUSE Bug 877506 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/877506"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-3567"
},
{
"cve": "CVE-2014-3568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3568"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3568",
"url": "https://www.suse.com/security/cve/CVE-2014-3568"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3568"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3571"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3571",
"url": "https://www.suse.com/security/cve/CVE-2014-3571"
},
{
"category": "external",
"summary": "SUSE Bug 912294 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/927623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3571"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8176"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8176",
"url": "https://www.suse.com/security/cve/CVE-2014-8176"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/1148697"
},
{
"category": "external",
"summary": "SUSE Bug 934494 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2014-8176"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0204"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the \"FREAK\" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0204",
"url": "https://www.suse.com/security/cve/CVE-2015-0204"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 920482 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920482"
},
{
"category": "external",
"summary": "SUSE Bug 920484 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920484"
},
{
"category": "external",
"summary": "SUSE Bug 927591 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927591"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 936787 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/936787"
},
{
"category": "external",
"summary": "SUSE Bug 952088 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/952088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0204"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-0292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0292"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the EVP_DecodeUpdate function in crypto/evp/encode.c in the base64-decoding implementation in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted base64 data that triggers a buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0292",
"url": "https://www.suse.com/security/cve/CVE-2015-0292"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922501 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/922501"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0292",
"url": "https://bugzilla.suse.com/936586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0292"
},
{
"cve": "CVE-2015-0293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0293"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0293",
"url": "https://www.suse.com/security/cve/CVE-2015-0293"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922488 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968051 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968051"
},
{
"category": "external",
"summary": "SUSE Bug 968053 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968053"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "critical"
}
],
"title": "CVE-2015-0293"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1791"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1791",
"url": "https://www.suse.com/security/cve/CVE-2015-1791"
},
{
"category": "external",
"summary": "SUSE Bug 933911 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/986238"
},
{
"category": "external",
"summary": "SUSE Bug 989464 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/989464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1791"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-4000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-4000"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-4000",
"url": "https://www.suse.com/security/cve/CVE-2015-4000"
},
{
"category": "external",
"summary": "SUSE Bug 1074631 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1074631"
},
{
"category": "external",
"summary": "SUSE Bug 1211968 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1211968"
},
{
"category": "external",
"summary": "SUSE Bug 931600 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931600"
},
{
"category": "external",
"summary": "SUSE Bug 931698 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "external",
"summary": "SUSE Bug 931723 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931723"
},
{
"category": "external",
"summary": "SUSE Bug 931845 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931845"
},
{
"category": "external",
"summary": "SUSE Bug 932026 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932026"
},
{
"category": "external",
"summary": "SUSE Bug 932483 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932483"
},
{
"category": "external",
"summary": "SUSE Bug 934789 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/934789"
},
{
"category": "external",
"summary": "SUSE Bug 935033 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935033"
},
{
"category": "external",
"summary": "SUSE Bug 935540 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935540"
},
{
"category": "external",
"summary": "SUSE Bug 935979 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935979"
},
{
"category": "external",
"summary": "SUSE Bug 937202 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937202"
},
{
"category": "external",
"summary": "SUSE Bug 937766 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937766"
},
{
"category": "external",
"summary": "SUSE Bug 938248 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938248"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 938895 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938895"
},
{
"category": "external",
"summary": "SUSE Bug 938905 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938905"
},
{
"category": "external",
"summary": "SUSE Bug 938906 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938906"
},
{
"category": "external",
"summary": "SUSE Bug 938913 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938913"
},
{
"category": "external",
"summary": "SUSE Bug 938945 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938945"
},
{
"category": "external",
"summary": "SUSE Bug 943664 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/943664"
},
{
"category": "external",
"summary": "SUSE Bug 944729 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/944729"
},
{
"category": "external",
"summary": "SUSE Bug 945582 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/945582"
},
{
"category": "external",
"summary": "SUSE Bug 955589 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/955589"
},
{
"category": "external",
"summary": "SUSE Bug 980406 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/980406"
},
{
"category": "external",
"summary": "SUSE Bug 990592 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/990592"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1-devel-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-32bit-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libopenssl1_0_0-x86-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-1.0.1g-0.22.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.i586",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:openssl1-doc-1.0.1g-0.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-10-22T23:22:56Z",
"details": "important"
}
],
"title": "CVE-2015-4000"
}
]
}
RHSA-2015:0126
Vulnerability from csaf_redhat - Published: 2015-02-04 17:52 - Updated: 2025-11-21 17:51Summary
Red Hat Security Advisory: rhev-hypervisor6 security update
Notes
Topic
An updated rhev-hypervisor6 package that fixes multiple security issues is
now available for Red Hat Enterprise Virtualization 3.
Red Hat Product Security has rated this update as having Critical security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization
Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor
is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes
everything necessary to run and manage virtual machines: a subset of the
Red Hat Enterprise Linux operating environment and the Red Hat Enterprise
Virtualization Agent.
Note: Red Hat Enterprise Virtualization Hypervisor is only available for
the Intel 64 and AMD64 architectures with virtualization extensions.
A heap-based buffer overflow was found in glibc's
__nss_hostname_digits_dots() function, which is used by the gethostbyname()
and gethostbyname2() glibc function calls. A remote attacker able to make
an application call either of these functions could use this flaw to
execute arbitrary code with the permissions of the user running the
application. (CVE-2015-0235)
A race condition flaw was found in the way the Linux kernel's KVM subsystem
handled PIT (Programmable Interval Timer) emulation. A guest user who has
access to the PIT I/O ports could use this flaw to crash the host.
(CVE-2014-3611)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
A memory leak flaw was found in the way an OpenSSL handled failed session
ticket integrity checks. A remote attacker could exhaust all available
memory of an SSL/TLS or DTLS server by sending a large number of invalid
session tickets to that server. (CVE-2014-3567)
It was found that the Linux kernel's KVM subsystem did not handle the VM
exits gracefully for the invept (Invalidate Translations Derived from EPT)
and invvpid (Invalidate Translations Based on VPID) instructions. On hosts
with an Intel processor and invept/invppid VM exit support, an unprivileged
guest user could use these instructions to crash the guest. (CVE-2014-3645,
CVE-2014-3646)
Red Hat would like to thank Qualys for reporting the CVE-2015-0235 issue,
Lars Bull of Google for reporting the CVE-2014-3611 issue, and the Advanced
Threat Research team at Intel Security for reporting the CVE-2014-3645 and
CVE-2014-3646 issues.
Users of the Red Hat Enterprise Virtualization Hypervisor are advised to
upgrade to this updated package.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated rhev-hypervisor6 package that fixes multiple security issues is\nnow available for Red Hat Enterprise Virtualization 3.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: a subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA heap-based buffer overflow was found in glibc\u0027s\n__nss_hostname_digits_dots() function, which is used by the gethostbyname()\nand gethostbyname2() glibc function calls. A remote attacker able to make\nan application call either of these functions could use this flaw to\nexecute arbitrary code with the permissions of the user running the\napplication. (CVE-2015-0235)\n\nA race condition flaw was found in the way the Linux kernel\u0027s KVM subsystem \nhandled PIT (Programmable Interval Timer) emulation. A guest user who has \naccess to the PIT I/O ports could use this flaw to crash the host. \n(CVE-2014-3611)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nA memory leak flaw was found in the way an OpenSSL handled failed session\nticket integrity checks. A remote attacker could exhaust all available\nmemory of an SSL/TLS or DTLS server by sending a large number of invalid\nsession tickets to that server. (CVE-2014-3567)\n\nIt was found that the Linux kernel\u0027s KVM subsystem did not handle the VM\nexits gracefully for the invept (Invalidate Translations Derived from EPT)\nand invvpid (Invalidate Translations Based on VPID) instructions. On hosts\nwith an Intel processor and invept/invppid VM exit support, an unprivileged\nguest user could use these instructions to crash the guest. (CVE-2014-3645,\nCVE-2014-3646)\n\nRed Hat would like to thank Qualys for reporting the CVE-2015-0235 issue,\nLars Bull of Google for reporting the CVE-2014-3611 issue, and the Advanced\nThreat Research team at Intel Security for reporting the CVE-2014-3645 and\nCVE-2014-3646 issues.\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:0126",
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "1144825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144825"
},
{
"category": "external",
"summary": "1144835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144835"
},
{
"category": "external",
"summary": "1144878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144878"
},
{
"category": "external",
"summary": "1152563",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152563"
},
{
"category": "external",
"summary": "1152961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152961"
},
{
"category": "external",
"summary": "1180044",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1180044"
},
{
"category": "external",
"summary": "1183461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1183461"
},
{
"category": "external",
"summary": "1185720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185720"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0126.json"
}
],
"title": "Red Hat Security Advisory: rhev-hypervisor6 security update",
"tracking": {
"current_release_date": "2025-11-21T17:51:31+00:00",
"generator": {
"date": "2025-11-21T17:51:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2015:0126",
"initial_release_date": "2015-02-04T17:52:31+00:00",
"revision_history": [
{
"date": "2015-02-04T17:52:31+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-02-04T17:52:31+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:51:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEV Hypervisor for RHEL-6",
"product": {
"name": "RHEV Hypervisor for RHEL-6",
"product_id": "6Server-RHEV-Hypervisor",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"product": {
"name": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"product_id": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhev-hypervisor6@6.6-20150123.1.el6ev?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch as a component of RHEV Hypervisor for RHEL-6",
"product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
},
"product_reference": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"relates_to_product_reference": "6Server-RHEV-Hypervisor"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
},
{
"cve": "CVE-2014-3567",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2014-10-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1152961"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in the way an OpenSSL handled failed session ticket integrity checks. A remote attacker could exhaust all available memory of an SSL/TLS or DTLS server by sending a large number of invalid session tickets to that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the version of openssl shipped with Red Hat Enterprise Linux 5; Red Hat JBoss Enterprise Application Server 5 and 6; and Red Hat JBoss Enterprise Web Server 1 and 2 because openssl-0.9.8e does not include support for session tickets.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "RHBZ#1152961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152961"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3567",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3567"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20141015.txt",
"url": "https://www.openssl.org/news/secadv_20141015.txt"
}
],
"release_date": "2014-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash"
},
{
"acknowledgments": [
{
"names": [
"Lars Bull"
],
"organization": "Google"
}
],
"cve": "CVE-2014-3611",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1144878"
}
],
"notes": [
{
"category": "description",
"text": "A race condition flaw was found in the way the Linux kernel\u0027s KVM subsystem handled PIT (Programmable Interval Timer) emulation. A guest user who has access to the PIT I/O ports could use this flaw to crash the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: PIT timer race condition",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6 and 7. This issue does affect the kvm packages as shipped with Red Hat Enterprise Linux 5. Future updates may address this issue in the\nrespective Red Hat Enterprise Linux releases.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3611"
},
{
"category": "external",
"summary": "RHBZ#1144878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144878"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3611",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3611"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3611",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3611"
}
],
"release_date": "2014-10-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 5.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: kvm: PIT timer race condition"
},
{
"acknowledgments": [
{
"names": [
"Advanced Threat Research team at Intel Security"
]
}
],
"cve": "CVE-2014-3645",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2014-09-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1144835"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the Linux kernel\u0027s KVM subsystem did not handle the VM exits gracefully for the invept (Invalidate Translations Derived from EPT) instructions. On hosts with an Intel processor and invept VM exit support, an unprivileged guest user could use these instructions to crash the guest.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: vmx: invept vm exit not handled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6 and 7. Future updates may address this issue in the\nrespective Red Hat Enterprise Linux releases.\n\n\nThis issue does affect the kvm packages as shipped with Red Hat Enterprise Linux 5.\n\nRed Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3645"
},
{
"category": "external",
"summary": "RHBZ#1144835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144835"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3645",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3645"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3645",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3645"
}
],
"release_date": "2014-10-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: kvm: vmx: invept vm exit not handled"
},
{
"acknowledgments": [
{
"names": [
"Advanced Threat Research team at Intel Security"
]
}
],
"cve": "CVE-2014-3646",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2014-09-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1144825"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the Linux kernel\u0027s KVM subsystem did not handle the VM exits gracefully for the invvpid (Invalidate Translations Based on VPID) instructions. On hosts with an Intel processor and invppid VM exit support, an unprivileged guest user could use these instructions to crash the guest.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: vmx: invvpid vm exit not handled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 6 and 7. Future updates may address this issue in the\nrespective Red Hat Enterprise Linux releases.\n\nThis issue does affect the kvm packages as shipped with Red Hat Enterprise Linux 5.\n\nRed Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3646"
},
{
"category": "external",
"summary": "RHBZ#1144825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144825"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3646"
}
],
"release_date": "2014-10-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: kvm: vmx: invvpid vm exit not handled"
},
{
"cve": "CVE-2015-0235",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2015-01-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1183461"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow was found in glibc\u0027s __nss_hostname_digits_dots() function, which is used by the gethostbyname() and gethostbyname2() glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code with the permissions of the user running the application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: __nss_hostname_digits_dots() heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0235"
},
{
"category": "external",
"summary": "RHBZ#1183461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1183461"
},
{
"category": "external",
"summary": "RHSB-ghost",
"url": "https://access.redhat.com/security/vulnerabilities/ghost"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0235",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0235"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0235",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0235"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2015/01/27/9",
"url": "http://www.openwall.com/lists/oss-security/2015/01/27/9"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1332213",
"url": "https://access.redhat.com/articles/1332213"
},
{
"category": "external",
"summary": "https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability",
"url": "https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability"
}
],
"release_date": "2015-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "glibc: __nss_hostname_digits_dots() heap-based buffer overflow"
}
]
}
RHSA-2014:1054
Vulnerability from csaf_redhat - Published: 2014-08-14 04:44 - Updated: 2025-11-21 17:49Summary
Red Hat Security Advisory: openssl security update
Notes
Topic
Updated openssl packages that fix multiple security issues are now
available for Red Hat Storage 2.1.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),
Transport Layer Security (TLS), and Datagram Transport Layer Security
(DTLS) protocols, as well as a full-strength, general purpose cryptography
library.
A race condition was found in the way OpenSSL handled ServerHello messages
with an included Supported EC Point Format extension. A malicious server
could possibly use this flaw to cause a multi-threaded TLS/SSL client using
OpenSSL to write into freed memory, causing the client to crash or execute
arbitrary code. (CVE-2014-3509)
It was discovered that the OBJ_obj2txt() function could fail to properly
NUL-terminate its output. This could possibly cause an application using
OpenSSL functions to format fields of X.509 certificates to disclose
portions of its memory. (CVE-2014-3508)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
Multiple flaws were discovered in the way OpenSSL handled DTLS packets.
A remote attacker could use these flaws to cause a DTLS server or client
using OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,
CVE-2014-3506, CVE-2014-3507)
A NULL pointer dereference flaw was found in the way OpenSSL performed a
handshake when using the anonymous Diffie-Hellman (DH) key exchange. A
malicious server could cause a DTLS client using OpenSSL to crash if that
client had anonymous DH cipher suites enabled. (CVE-2014-3510)
All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library must be restarted or the
system rebooted.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated openssl packages that fix multiple security issues are now\navailable for Red Hat Storage 2.1.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),\nTransport Layer Security (TLS), and Datagram Transport Layer Security\n(DTLS) protocols, as well as a full-strength, general purpose cryptography\nlibrary.\n\nA race condition was found in the way OpenSSL handled ServerHello messages\nwith an included Supported EC Point Format extension. A malicious server\ncould possibly use this flaw to cause a multi-threaded TLS/SSL client using\nOpenSSL to write into freed memory, causing the client to crash or execute\narbitrary code. (CVE-2014-3509)\n\nIt was discovered that the OBJ_obj2txt() function could fail to properly\nNUL-terminate its output. This could possibly cause an application using\nOpenSSL functions to format fields of X.509 certificates to disclose\nportions of its memory. (CVE-2014-3508)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nMultiple flaws were discovered in the way OpenSSL handled DTLS packets.\nA remote attacker could use these flaws to cause a DTLS server or client\nusing OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,\nCVE-2014-3506, CVE-2014-3507)\n\nA NULL pointer dereference flaw was found in the way OpenSSL performed a\nhandshake when using the anonymous Diffie-Hellman (DH) key exchange. A\nmalicious server could cause a DTLS client using OpenSSL to crash if that\nclient had anonymous DH cipher suites enabled. (CVE-2014-3510)\n\nAll OpenSSL users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. For the update to take\neffect, all services linked to the OpenSSL library must be restarted or the\nsystem rebooted.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:1054",
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"category": "external",
"summary": "1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1054.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2025-11-21T17:49:36+00:00",
"generator": {
"date": "2025-11-21T17:49:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2014:1054",
"initial_release_date": "2014-08-14T04:44:38+00:00",
"revision_history": [
{
"date": "2014-08-14T04:44:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-08-14T04:44:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:49:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Storage Server 2.1",
"product": {
"name": "Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:storage:2.1:server:el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Gluster Storage"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3505",
"cwe": {
"id": "CWE-672",
"name": "Operation on a Resource after Expiration or Release"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127499"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS packet processing double free",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "RHBZ#1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS packet processing double free"
},
{
"cve": "CVE-2014-3506",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127500"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "RHBZ#1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory exhaustion"
},
{
"cve": "CVE-2014-3507",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127502"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory leak from zero-length fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This did not affect openssl packages in Red Hat Enterprise Linux 5 (based on upstream 0.9.8e) and openssl 1.0.0 packages in Red Hat Enterprise Linux 6 (i.e. packages released before RHBA-2013:1585, which rebased openssl from 1.0.0 to 1.0.1e). The issue was introduced upstream in versions 0.9.8o and 1.0.0a.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "RHBZ#1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory leak from zero-length fragments"
},
{
"cve": "CVE-2014-3508",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127490"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the OBJ_obj2txt() function could fail to properly NUL-terminate its output. This could possibly cause an application using OpenSSL functions to format fields of X.509 certificates to disclose portions of its memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: information leak in pretty printing functions",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "RHBZ#1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: information leak in pretty printing functions"
},
{
"cve": "CVE-2014-3509",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127498"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the way OpenSSL handled ServerHello messages with an included Supported EC Point Format extension. A malicious server could possibly use this flaw to cause a multi-threaded TLS/SSL client using OpenSSL to write into freed memory, causing the client to crash or execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: race condition in ssl_parse_serverhello_tlsext",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "RHBZ#1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: race condition in ssl_parse_serverhello_tlsext"
},
{
"cve": "CVE-2014-3510",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127503"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the way OpenSSL performed a handshake when using the anonymous Diffie-Hellman (DH) key exchange. A malicious server could cause a DTLS client using OpenSSL to crash if that client had anonymous DH cipher suites enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS anonymous (EC)DH denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "RHBZ#1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS anonymous (EC)DH denial of service"
},
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
}
]
}
RHSA-2014_1054
Vulnerability from csaf_redhat - Published: 2014-08-14 04:44 - Updated: 2024-11-22 08:21Summary
Red Hat Security Advisory: openssl security update
Notes
Topic
Updated openssl packages that fix multiple security issues are now
available for Red Hat Storage 2.1.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),
Transport Layer Security (TLS), and Datagram Transport Layer Security
(DTLS) protocols, as well as a full-strength, general purpose cryptography
library.
A race condition was found in the way OpenSSL handled ServerHello messages
with an included Supported EC Point Format extension. A malicious server
could possibly use this flaw to cause a multi-threaded TLS/SSL client using
OpenSSL to write into freed memory, causing the client to crash or execute
arbitrary code. (CVE-2014-3509)
It was discovered that the OBJ_obj2txt() function could fail to properly
NUL-terminate its output. This could possibly cause an application using
OpenSSL functions to format fields of X.509 certificates to disclose
portions of its memory. (CVE-2014-3508)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
Multiple flaws were discovered in the way OpenSSL handled DTLS packets.
A remote attacker could use these flaws to cause a DTLS server or client
using OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,
CVE-2014-3506, CVE-2014-3507)
A NULL pointer dereference flaw was found in the way OpenSSL performed a
handshake when using the anonymous Diffie-Hellman (DH) key exchange. A
malicious server could cause a DTLS client using OpenSSL to crash if that
client had anonymous DH cipher suites enabled. (CVE-2014-3510)
All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library must be restarted or the
system rebooted.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated openssl packages that fix multiple security issues are now\navailable for Red Hat Storage 2.1.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),\nTransport Layer Security (TLS), and Datagram Transport Layer Security\n(DTLS) protocols, as well as a full-strength, general purpose cryptography\nlibrary.\n\nA race condition was found in the way OpenSSL handled ServerHello messages\nwith an included Supported EC Point Format extension. A malicious server\ncould possibly use this flaw to cause a multi-threaded TLS/SSL client using\nOpenSSL to write into freed memory, causing the client to crash or execute\narbitrary code. (CVE-2014-3509)\n\nIt was discovered that the OBJ_obj2txt() function could fail to properly\nNUL-terminate its output. This could possibly cause an application using\nOpenSSL functions to format fields of X.509 certificates to disclose\nportions of its memory. (CVE-2014-3508)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nMultiple flaws were discovered in the way OpenSSL handled DTLS packets.\nA remote attacker could use these flaws to cause a DTLS server or client\nusing OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,\nCVE-2014-3506, CVE-2014-3507)\n\nA NULL pointer dereference flaw was found in the way OpenSSL performed a\nhandshake when using the anonymous Diffie-Hellman (DH) key exchange. A\nmalicious server could cause a DTLS client using OpenSSL to crash if that\nclient had anonymous DH cipher suites enabled. (CVE-2014-3510)\n\nAll OpenSSL users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. For the update to take\neffect, all services linked to the OpenSSL library must be restarted or the\nsystem rebooted.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:1054",
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"category": "external",
"summary": "1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1054.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2024-11-22T08:21:01+00:00",
"generator": {
"date": "2024-11-22T08:21:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2014:1054",
"initial_release_date": "2014-08-14T04:44:38+00:00",
"revision_history": [
{
"date": "2014-08-14T04:44:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-08-14T04:44:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T08:21:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Storage Server 2.1",
"product": {
"name": "Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:storage:2.1:server:el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Gluster Storage"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Storage Server 2.1",
"product_id": "6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-RHS-6.4.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3505",
"cwe": {
"id": "CWE-672",
"name": "Operation on a Resource after Expiration or Release"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127499"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS packet processing double free",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "RHBZ#1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS packet processing double free"
},
{
"cve": "CVE-2014-3506",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127500"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "RHBZ#1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory exhaustion"
},
{
"cve": "CVE-2014-3507",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127502"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory leak from zero-length fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This did not affect openssl packages in Red Hat Enterprise Linux 5 (based on upstream 0.9.8e) and openssl 1.0.0 packages in Red Hat Enterprise Linux 6 (i.e. packages released before RHBA-2013:1585, which rebased openssl from 1.0.0 to 1.0.1e). The issue was introduced upstream in versions 0.9.8o and 1.0.0a.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "RHBZ#1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory leak from zero-length fragments"
},
{
"cve": "CVE-2014-3508",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127490"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the OBJ_obj2txt() function could fail to properly NUL-terminate its output. This could possibly cause an application using OpenSSL functions to format fields of X.509 certificates to disclose portions of its memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: information leak in pretty printing functions",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "RHBZ#1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: information leak in pretty printing functions"
},
{
"cve": "CVE-2014-3509",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127498"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the way OpenSSL handled ServerHello messages with an included Supported EC Point Format extension. A malicious server could possibly use this flaw to cause a multi-threaded TLS/SSL client using OpenSSL to write into freed memory, causing the client to crash or execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: race condition in ssl_parse_serverhello_tlsext",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "RHBZ#1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: race condition in ssl_parse_serverhello_tlsext"
},
{
"cve": "CVE-2014-3510",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127503"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the way OpenSSL performed a handshake when using the anonymous Diffie-Hellman (DH) key exchange. A malicious server could cause a DTLS client using OpenSSL to crash if that client had anonymous DH cipher suites enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS anonymous (EC)DH denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "RHBZ#1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS anonymous (EC)DH denial of service"
},
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-14T04:44:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1054"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-RHS-6.4.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-RHS-6.4.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
}
]
}
RHSA-2014:1052
Vulnerability from csaf_redhat - Published: 2014-08-13 21:32 - Updated: 2025-11-21 17:49Summary
Red Hat Security Advisory: openssl security update
Notes
Topic
Updated openssl packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 6 and 7.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),
Transport Layer Security (TLS), and Datagram Transport Layer Security
(DTLS) protocols, as well as a full-strength, general purpose cryptography
library.
A race condition was found in the way OpenSSL handled ServerHello messages
with an included Supported EC Point Format extension. A malicious server
could possibly use this flaw to cause a multi-threaded TLS/SSL client using
OpenSSL to write into freed memory, causing the client to crash or execute
arbitrary code. (CVE-2014-3509)
It was discovered that the OBJ_obj2txt() function could fail to properly
NUL-terminate its output. This could possibly cause an application using
OpenSSL functions to format fields of X.509 certificates to disclose
portions of its memory. (CVE-2014-3508)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
Multiple flaws were discovered in the way OpenSSL handled DTLS packets.
A remote attacker could use these flaws to cause a DTLS server or client
using OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,
CVE-2014-3506, CVE-2014-3507)
A NULL pointer dereference flaw was found in the way OpenSSL performed a
handshake when using the anonymous Diffie-Hellman (DH) key exchange. A
malicious server could cause a DTLS client using OpenSSL to crash if that
client had anonymous DH cipher suites enabled. (CVE-2014-3510)
All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library (such as httpd and other
SSL-enabled services) must be restarted or the system rebooted.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated openssl packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 6 and 7.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),\nTransport Layer Security (TLS), and Datagram Transport Layer Security\n(DTLS) protocols, as well as a full-strength, general purpose cryptography\nlibrary.\n\nA race condition was found in the way OpenSSL handled ServerHello messages\nwith an included Supported EC Point Format extension. A malicious server\ncould possibly use this flaw to cause a multi-threaded TLS/SSL client using\nOpenSSL to write into freed memory, causing the client to crash or execute\narbitrary code. (CVE-2014-3509)\n\nIt was discovered that the OBJ_obj2txt() function could fail to properly\nNUL-terminate its output. This could possibly cause an application using\nOpenSSL functions to format fields of X.509 certificates to disclose\nportions of its memory. (CVE-2014-3508)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nMultiple flaws were discovered in the way OpenSSL handled DTLS packets.\nA remote attacker could use these flaws to cause a DTLS server or client\nusing OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,\nCVE-2014-3506, CVE-2014-3507)\n\nA NULL pointer dereference flaw was found in the way OpenSSL performed a\nhandshake when using the anonymous Diffie-Hellman (DH) key exchange. A\nmalicious server could cause a DTLS client using OpenSSL to crash if that\nclient had anonymous DH cipher suites enabled. (CVE-2014-3510)\n\nAll OpenSSL users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. For the update to take\neffect, all services linked to the OpenSSL library (such as httpd and other\nSSL-enabled services) must be restarted or the system rebooted.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:1052",
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"category": "external",
"summary": "1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1052.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2025-11-21T17:49:37+00:00",
"generator": {
"date": "2025-11-21T17:49:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2014:1052",
"initial_release_date": "2014-08-13T21:32:03+00:00",
"revision_history": [
{
"date": "2014-08-13T21:32:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-08-13T21:32:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:49:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=src"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.src",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.s390",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=s390"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=s390"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=s390"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3505",
"cwe": {
"id": "CWE-672",
"name": "Operation on a Resource after Expiration or Release"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127499"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS packet processing double free",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "RHBZ#1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS packet processing double free"
},
{
"cve": "CVE-2014-3506",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127500"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "RHBZ#1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory exhaustion"
},
{
"cve": "CVE-2014-3507",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127502"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory leak from zero-length fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This did not affect openssl packages in Red Hat Enterprise Linux 5 (based on upstream 0.9.8e) and openssl 1.0.0 packages in Red Hat Enterprise Linux 6 (i.e. packages released before RHBA-2013:1585, which rebased openssl from 1.0.0 to 1.0.1e). The issue was introduced upstream in versions 0.9.8o and 1.0.0a.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "RHBZ#1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory leak from zero-length fragments"
},
{
"cve": "CVE-2014-3508",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127490"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the OBJ_obj2txt() function could fail to properly NUL-terminate its output. This could possibly cause an application using OpenSSL functions to format fields of X.509 certificates to disclose portions of its memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: information leak in pretty printing functions",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "RHBZ#1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: information leak in pretty printing functions"
},
{
"cve": "CVE-2014-3509",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127498"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the way OpenSSL handled ServerHello messages with an included Supported EC Point Format extension. A malicious server could possibly use this flaw to cause a multi-threaded TLS/SSL client using OpenSSL to write into freed memory, causing the client to crash or execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: race condition in ssl_parse_serverhello_tlsext",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "RHBZ#1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: race condition in ssl_parse_serverhello_tlsext"
},
{
"cve": "CVE-2014-3510",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127503"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the way OpenSSL performed a handshake when using the anonymous Diffie-Hellman (DH) key exchange. A malicious server could cause a DTLS client using OpenSSL to crash if that client had anonymous DH cipher suites enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS anonymous (EC)DH denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "RHBZ#1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS anonymous (EC)DH denial of service"
},
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
}
]
}
RHSA-2014_1052
Vulnerability from csaf_redhat - Published: 2014-08-13 21:32 - Updated: 2024-11-22 08:20Summary
Red Hat Security Advisory: openssl security update
Notes
Topic
Updated openssl packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 6 and 7.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),
Transport Layer Security (TLS), and Datagram Transport Layer Security
(DTLS) protocols, as well as a full-strength, general purpose cryptography
library.
A race condition was found in the way OpenSSL handled ServerHello messages
with an included Supported EC Point Format extension. A malicious server
could possibly use this flaw to cause a multi-threaded TLS/SSL client using
OpenSSL to write into freed memory, causing the client to crash or execute
arbitrary code. (CVE-2014-3509)
It was discovered that the OBJ_obj2txt() function could fail to properly
NUL-terminate its output. This could possibly cause an application using
OpenSSL functions to format fields of X.509 certificates to disclose
portions of its memory. (CVE-2014-3508)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
Multiple flaws were discovered in the way OpenSSL handled DTLS packets.
A remote attacker could use these flaws to cause a DTLS server or client
using OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,
CVE-2014-3506, CVE-2014-3507)
A NULL pointer dereference flaw was found in the way OpenSSL performed a
handshake when using the anonymous Diffie-Hellman (DH) key exchange. A
malicious server could cause a DTLS client using OpenSSL to crash if that
client had anonymous DH cipher suites enabled. (CVE-2014-3510)
All OpenSSL users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. For the update to take
effect, all services linked to the OpenSSL library (such as httpd and other
SSL-enabled services) must be restarted or the system rebooted.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated openssl packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 6 and 7.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),\nTransport Layer Security (TLS), and Datagram Transport Layer Security\n(DTLS) protocols, as well as a full-strength, general purpose cryptography\nlibrary.\n\nA race condition was found in the way OpenSSL handled ServerHello messages\nwith an included Supported EC Point Format extension. A malicious server\ncould possibly use this flaw to cause a multi-threaded TLS/SSL client using\nOpenSSL to write into freed memory, causing the client to crash or execute\narbitrary code. (CVE-2014-3509)\n\nIt was discovered that the OBJ_obj2txt() function could fail to properly\nNUL-terminate its output. This could possibly cause an application using\nOpenSSL functions to format fields of X.509 certificates to disclose\nportions of its memory. (CVE-2014-3508)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nMultiple flaws were discovered in the way OpenSSL handled DTLS packets.\nA remote attacker could use these flaws to cause a DTLS server or client\nusing OpenSSL to crash or use excessive amounts of memory. (CVE-2014-3505,\nCVE-2014-3506, CVE-2014-3507)\n\nA NULL pointer dereference flaw was found in the way OpenSSL performed a\nhandshake when using the anonymous Diffie-Hellman (DH) key exchange. A\nmalicious server could cause a DTLS client using OpenSSL to crash if that\nclient had anonymous DH cipher suites enabled. (CVE-2014-3510)\n\nAll OpenSSL users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. For the update to take\neffect, all services linked to the OpenSSL library (such as httpd and other\nSSL-enabled services) must be restarted or the system rebooted.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:1052",
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"category": "external",
"summary": "1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1052.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2024-11-22T08:20:47+00:00",
"generator": {
"date": "2024-11-22T08:20:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2014:1052",
"initial_release_date": "2014-08-13T21:32:03+00:00",
"revision_history": [
{
"date": "2014-08-13T21:32:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-08-13T21:32:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T08:20:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=i686"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=src"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.src",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.s390",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=s390"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=s390"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=s390"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"product": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"product_id": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.1e-16.el6_5.15?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"product": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"product_id": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-16.el6_5.15?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"product": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"product_id": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-16.el6_5.15?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"product": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"product_id": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.1e-34.el7_0.4?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Client-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.src",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.i686",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64"
},
"product_reference": "openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.5.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.src",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
},
"product_reference": "openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.0.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3505",
"cwe": {
"id": "CWE-672",
"name": "Operation on a Resource after Expiration or Release"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127499"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS packet processing double free",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "RHBZ#1127499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3505",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3505"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3505"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS packet processing double free"
},
{
"cve": "CVE-2014-3506",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127500"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "RHBZ#1127500",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127500"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3506"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory exhaustion"
},
{
"cve": "CVE-2014-3507",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127502"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS memory leak from zero-length fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This did not affect openssl packages in Red Hat Enterprise Linux 5 (based on upstream 0.9.8e) and openssl 1.0.0 packages in Red Hat Enterprise Linux 6 (i.e. packages released before RHBA-2013:1585, which rebased openssl from 1.0.0 to 1.0.1e). The issue was introduced upstream in versions 0.9.8o and 1.0.0a.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "RHBZ#1127502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3507"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3507"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS memory leak from zero-length fragments"
},
{
"cve": "CVE-2014-3508",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127490"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the OBJ_obj2txt() function could fail to properly NUL-terminate its output. This could possibly cause an application using OpenSSL functions to format fields of X.509 certificates to disclose portions of its memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: information leak in pretty printing functions",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "RHBZ#1127490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127490"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3508"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: information leak in pretty printing functions"
},
{
"cve": "CVE-2014-3509",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127498"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the way OpenSSL handled ServerHello messages with an included Supported EC Point Format extension. A malicious server could possibly use this flaw to cause a multi-threaded TLS/SSL client using OpenSSL to write into freed memory, causing the client to crash or execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: race condition in ssl_parse_serverhello_tlsext",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "RHBZ#1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: race condition in ssl_parse_serverhello_tlsext"
},
{
"cve": "CVE-2014-3510",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127503"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the way OpenSSL performed a handshake when using the anonymous Diffie-Hellman (DH) key exchange. A malicious server could cause a DTLS client using OpenSSL to crash if that client had anonymous DH cipher suites enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: DTLS anonymous (EC)DH denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "RHBZ#1127503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3510"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3510"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: DTLS anonymous (EC)DH denial of service"
},
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-08-13T21:32:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:1052"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Client-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Client-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6ComputeNode-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6ComputeNode-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Server-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Server-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.src",
"6Workstation-optional-6.5.z:openssl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-debuginfo-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-devel-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-perl-0:1.0.1e-16.el6_5.15.x86_64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.i686",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.ppc64",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.s390x",
"6Workstation-optional-6.5.z:openssl-static-0:1.0.1e-16.el6_5.15.x86_64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Client-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Client-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7ComputeNode-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7ComputeNode-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Server-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Server-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.src",
"7Workstation-optional-7.0.Z:openssl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-debuginfo-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-devel-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-libs-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-perl-1:1.0.1e-34.el7_0.4.x86_64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.i686",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.ppc64",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.s390x",
"7Workstation-optional-7.0.Z:openssl-static-1:1.0.1e-34.el7_0.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
}
]
}
RHSA-2015_0126
Vulnerability from csaf_redhat - Published: 2015-02-04 17:52 - Updated: 2024-11-22 08:52Summary
Red Hat Security Advisory: rhev-hypervisor6 security update
Notes
Topic
An updated rhev-hypervisor6 package that fixes multiple security issues is
now available for Red Hat Enterprise Virtualization 3.
Red Hat Product Security has rated this update as having Critical security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization
Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor
is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes
everything necessary to run and manage virtual machines: a subset of the
Red Hat Enterprise Linux operating environment and the Red Hat Enterprise
Virtualization Agent.
Note: Red Hat Enterprise Virtualization Hypervisor is only available for
the Intel 64 and AMD64 architectures with virtualization extensions.
A heap-based buffer overflow was found in glibc's
__nss_hostname_digits_dots() function, which is used by the gethostbyname()
and gethostbyname2() glibc function calls. A remote attacker able to make
an application call either of these functions could use this flaw to
execute arbitrary code with the permissions of the user running the
application. (CVE-2015-0235)
A race condition flaw was found in the way the Linux kernel's KVM subsystem
handled PIT (Programmable Interval Timer) emulation. A guest user who has
access to the PIT I/O ports could use this flaw to crash the host.
(CVE-2014-3611)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
A memory leak flaw was found in the way an OpenSSL handled failed session
ticket integrity checks. A remote attacker could exhaust all available
memory of an SSL/TLS or DTLS server by sending a large number of invalid
session tickets to that server. (CVE-2014-3567)
It was found that the Linux kernel's KVM subsystem did not handle the VM
exits gracefully for the invept (Invalidate Translations Derived from EPT)
and invvpid (Invalidate Translations Based on VPID) instructions. On hosts
with an Intel processor and invept/invppid VM exit support, an unprivileged
guest user could use these instructions to crash the guest. (CVE-2014-3645,
CVE-2014-3646)
Red Hat would like to thank Qualys for reporting the CVE-2015-0235 issue,
Lars Bull of Google for reporting the CVE-2014-3611 issue, and the Advanced
Threat Research team at Intel Security for reporting the CVE-2014-3645 and
CVE-2014-3646 issues.
Users of the Red Hat Enterprise Virtualization Hypervisor are advised to
upgrade to this updated package.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated rhev-hypervisor6 package that fixes multiple security issues is\nnow available for Red Hat Enterprise Virtualization 3.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: a subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA heap-based buffer overflow was found in glibc\u0027s\n__nss_hostname_digits_dots() function, which is used by the gethostbyname()\nand gethostbyname2() glibc function calls. A remote attacker able to make\nan application call either of these functions could use this flaw to\nexecute arbitrary code with the permissions of the user running the\napplication. (CVE-2015-0235)\n\nA race condition flaw was found in the way the Linux kernel\u0027s KVM subsystem \nhandled PIT (Programmable Interval Timer) emulation. A guest user who has \naccess to the PIT I/O ports could use this flaw to crash the host. \n(CVE-2014-3611)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nA memory leak flaw was found in the way an OpenSSL handled failed session\nticket integrity checks. A remote attacker could exhaust all available\nmemory of an SSL/TLS or DTLS server by sending a large number of invalid\nsession tickets to that server. (CVE-2014-3567)\n\nIt was found that the Linux kernel\u0027s KVM subsystem did not handle the VM\nexits gracefully for the invept (Invalidate Translations Derived from EPT)\nand invvpid (Invalidate Translations Based on VPID) instructions. On hosts\nwith an Intel processor and invept/invppid VM exit support, an unprivileged\nguest user could use these instructions to crash the guest. (CVE-2014-3645,\nCVE-2014-3646)\n\nRed Hat would like to thank Qualys for reporting the CVE-2015-0235 issue,\nLars Bull of Google for reporting the CVE-2014-3611 issue, and the Advanced\nThreat Research team at Intel Security for reporting the CVE-2014-3645 and\nCVE-2014-3646 issues.\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:0126",
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "1144825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144825"
},
{
"category": "external",
"summary": "1144835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144835"
},
{
"category": "external",
"summary": "1144878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144878"
},
{
"category": "external",
"summary": "1152563",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152563"
},
{
"category": "external",
"summary": "1152961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152961"
},
{
"category": "external",
"summary": "1180044",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1180044"
},
{
"category": "external",
"summary": "1183461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1183461"
},
{
"category": "external",
"summary": "1185720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185720"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0126.json"
}
],
"title": "Red Hat Security Advisory: rhev-hypervisor6 security update",
"tracking": {
"current_release_date": "2024-11-22T08:52:29+00:00",
"generator": {
"date": "2024-11-22T08:52:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2015:0126",
"initial_release_date": "2015-02-04T17:52:31+00:00",
"revision_history": [
{
"date": "2015-02-04T17:52:31+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-02-04T17:52:31+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T08:52:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEV Hypervisor for RHEL-6",
"product": {
"name": "RHEV Hypervisor for RHEL-6",
"product_id": "6Server-RHEV-Hypervisor",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"product": {
"name": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"product_id": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhev-hypervisor6@6.6-20150123.1.el6ev?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch as a component of RHEV Hypervisor for RHEL-6",
"product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
},
"product_reference": "rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch",
"relates_to_product_reference": "6Server-RHEV-Hypervisor"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
},
{
"cve": "CVE-2014-3567",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2014-10-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1152961"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in the way an OpenSSL handled failed session ticket integrity checks. A remote attacker could exhaust all available memory of an SSL/TLS or DTLS server by sending a large number of invalid session tickets to that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the version of openssl shipped with Red Hat Enterprise Linux 5; Red Hat JBoss Enterprise Application Server 5 and 6; and Red Hat JBoss Enterprise Web Server 1 and 2 because openssl-0.9.8e does not include support for session tickets.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "RHBZ#1152961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152961"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3567",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3567"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20141015.txt",
"url": "https://www.openssl.org/news/secadv_20141015.txt"
}
],
"release_date": "2014-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash"
},
{
"acknowledgments": [
{
"names": [
"Lars Bull"
],
"organization": "Google"
}
],
"cve": "CVE-2014-3611",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1144878"
}
],
"notes": [
{
"category": "description",
"text": "A race condition flaw was found in the way the Linux kernel\u0027s KVM subsystem handled PIT (Programmable Interval Timer) emulation. A guest user who has access to the PIT I/O ports could use this flaw to crash the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: PIT timer race condition",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6 and 7. This issue does affect the kvm packages as shipped with Red Hat Enterprise Linux 5. Future updates may address this issue in the\nrespective Red Hat Enterprise Linux releases.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3611"
},
{
"category": "external",
"summary": "RHBZ#1144878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144878"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3611",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3611"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3611",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3611"
}
],
"release_date": "2014-10-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 5.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: kvm: PIT timer race condition"
},
{
"acknowledgments": [
{
"names": [
"Advanced Threat Research team at Intel Security"
]
}
],
"cve": "CVE-2014-3645",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2014-09-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1144835"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the Linux kernel\u0027s KVM subsystem did not handle the VM exits gracefully for the invept (Invalidate Translations Derived from EPT) instructions. On hosts with an Intel processor and invept VM exit support, an unprivileged guest user could use these instructions to crash the guest.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: vmx: invept vm exit not handled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6 and 7. Future updates may address this issue in the\nrespective Red Hat Enterprise Linux releases.\n\n\nThis issue does affect the kvm packages as shipped with Red Hat Enterprise Linux 5.\n\nRed Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3645"
},
{
"category": "external",
"summary": "RHBZ#1144835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144835"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3645",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3645"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3645",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3645"
}
],
"release_date": "2014-10-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: kvm: vmx: invept vm exit not handled"
},
{
"acknowledgments": [
{
"names": [
"Advanced Threat Research team at Intel Security"
]
}
],
"cve": "CVE-2014-3646",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2014-09-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1144825"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the Linux kernel\u0027s KVM subsystem did not handle the VM exits gracefully for the invvpid (Invalidate Translations Based on VPID) instructions. On hosts with an Intel processor and invppid VM exit support, an unprivileged guest user could use these instructions to crash the guest.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: kvm: vmx: invvpid vm exit not handled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 6 and 7. Future updates may address this issue in the\nrespective Red Hat Enterprise Linux releases.\n\nThis issue does affect the kvm packages as shipped with Red Hat Enterprise Linux 5.\n\nRed Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3646"
},
{
"category": "external",
"summary": "RHBZ#1144825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1144825"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3646"
}
],
"release_date": "2014-10-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: kvm: vmx: invvpid vm exit not handled"
},
{
"cve": "CVE-2015-0235",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2015-01-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1183461"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow was found in glibc\u0027s __nss_hostname_digits_dots() function, which is used by the gethostbyname() and gethostbyname2() glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code with the permissions of the user running the application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: __nss_hostname_digits_dots() heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0235"
},
{
"category": "external",
"summary": "RHBZ#1183461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1183461"
},
{
"category": "external",
"summary": "RHSB-ghost",
"url": "https://access.redhat.com/security/vulnerabilities/ghost"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0235",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0235"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0235",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0235"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2015/01/27/9",
"url": "http://www.openwall.com/lists/oss-security/2015/01/27/9"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1332213",
"url": "https://access.redhat.com/articles/1332213"
},
{
"category": "external",
"summary": "https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability",
"url": "https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability"
}
],
"release_date": "2015-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-04T17:52:31+00:00",
"details": "This update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization environments\nusing the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
"product_ids": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0126"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.6-20150123.1.el6ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "glibc: __nss_hostname_digits_dots() heap-based buffer overflow"
}
]
}
RHSA-2015:0197
Vulnerability from csaf_redhat - Published: 2015-02-11 17:35 - Updated: 2025-11-21 17:51Summary
Red Hat Security Advisory: rhevm-spice-client security and bug fix update
Notes
Topic
Updated rhevm-spice-client packages that fix two security issues and
several bugs are now available for Red Hat Enterprise Virtualization
Manager 3.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
Red Hat Enterprise Virtualization Manager provides access to virtual
machines using SPICE. These SPICE client packages provide the SPICE client
and usbclerk service for both Windows 32-bit operating systems and Windows
64-bit operating systems.
A race condition was found in the way OpenSSL handled ServerHello messages
with an included Supported EC Point Format extension. A malicious server
could possibly use this flaw to cause a multi-threaded TLS/SSL client using
OpenSSL to write into freed memory, causing the client to crash or execute
arbitrary code. (CVE-2014-3509)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
This update also fixes the following bugs:
* Previously, various clipboard managers, operating on the client or on the
guest, would occasionally lose synchronization, which resulted in clipboard
data loss and the SPICE console freezing. Now, spice-gtk have been patched,
such that clipboard synchronization does not freeze the SPICE console
anymore. (BZ#1083489)
* Prior to this update, when a SPICE console was launched from the Red Hat
Enterprise Virtualization User Portal with the 'Native Client' invocation
method and 'Open in Full Screen' selected, the displays of the guest
virtual machine were not always configured to match the client displays.
After this update, the SPICE console will show a full-screen guest display
for each client monitor. (BZ#1076243)
* A difference in behavior between Linux and Windows clients caused an
extra nul character to be sent when pasting text in a guest machine from a
Windows client. This invisible character was visible in some Java
applications. With this update, the extra nul character is removed from
text strings and no more extraneous character would appear. (BZ#1090122)
* Previously, If the clipboard is of type image/bmp, and the data is of 0
size, GTK+ will crash. With this update, the data size is checked first,
and GTK+ no longer crashes when clipboard is of type image/bmp, and the
data is of 0 size. (BZ#1090433)
* Modifier-only key combinations cannot be registered by users as hotkeys
so if a user tries to set a modifier-only key sequence (for example,
'ctrl+alt') as the hotkey for releasing the cursor, it will fail, and the
user will be able to release the cursor from the window. With this update,
when a modifier-only hotkey is attempted to be registered, it will fall
back to the default cursor-release sequence (which happens to be
'ctrl+alt'). (BZ#985319)
* Display configuration sometimes used outdated information about the
position of the remote-viewer windows in order to align and configure the
guest displays. Occasionally, this caused the guest displays to became
unexpectedly swapped when a window is resized. With this update,
remote-viewer will always use the current window locations to align
displays, rather than using a possibly outdated cached location
information. (BZ#1018182)
All rhevm-spice-client users are advised to upgrade to these updated
packages, which contain backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated rhevm-spice-client packages that fix two security issues and\nseveral bugs are now available for Red Hat Enterprise Virtualization\nManager 3.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems.\n\nA race condition was found in the way OpenSSL handled ServerHello messages\nwith an included Supported EC Point Format extension. A malicious server\ncould possibly use this flaw to cause a multi-threaded TLS/SSL client using\nOpenSSL to write into freed memory, causing the client to crash or execute\narbitrary code. (CVE-2014-3509)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nThis update also fixes the following bugs:\n\n* Previously, various clipboard managers, operating on the client or on the\nguest, would occasionally lose synchronization, which resulted in clipboard\ndata loss and the SPICE console freezing. Now, spice-gtk have been patched,\nsuch that clipboard synchronization does not freeze the SPICE console\nanymore. (BZ#1083489)\n\n* Prior to this update, when a SPICE console was launched from the Red Hat\nEnterprise Virtualization User Portal with the \u0027Native Client\u0027 invocation\nmethod and \u0027Open in Full Screen\u0027 selected, the displays of the guest\nvirtual machine were not always configured to match the client displays.\nAfter this update, the SPICE console will show a full-screen guest display\nfor each client monitor. (BZ#1076243)\n\n* A difference in behavior between Linux and Windows clients caused an\nextra nul character to be sent when pasting text in a guest machine from a\nWindows client. This invisible character was visible in some Java\napplications. With this update, the extra nul character is removed from\ntext strings and no more extraneous character would appear. (BZ#1090122)\n\n* Previously, If the clipboard is of type image/bmp, and the data is of 0\nsize, GTK+ will crash. With this update, the data size is checked first,\nand GTK+ no longer crashes when clipboard is of type image/bmp, and the\ndata is of 0 size. (BZ#1090433)\n\n* Modifier-only key combinations cannot be registered by users as hotkeys\nso if a user tries to set a modifier-only key sequence (for example,\n\u0027ctrl+alt\u0027) as the hotkey for releasing the cursor, it will fail, and the\nuser will be able to release the cursor from the window. With this update,\nwhen a modifier-only hotkey is attempted to be registered, it will fall\nback to the default cursor-release sequence (which happens to be\n\u0027ctrl+alt\u0027). (BZ#985319)\n\n* Display configuration sometimes used outdated information about the\nposition of the remote-viewer windows in order to align and configure the\nguest displays. Occasionally, this caused the guest displays to became\nunexpectedly swapped when a window is resized. With this update,\nremote-viewer will always use the current window locations to align\ndisplays, rather than using a possibly outdated cached location\ninformation. (BZ#1018182)\n\nAll rhevm-spice-client users are advised to upgrade to these updated\npackages, which contain backported patches to correct these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:0197",
"url": "https://access.redhat.com/errata/RHSA-2015:0197"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1018145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018145"
},
{
"category": "external",
"summary": "1018182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018182"
},
{
"category": "external",
"summary": "1076243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1076243"
},
{
"category": "external",
"summary": "1083489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1083489"
},
{
"category": "external",
"summary": "1090122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1090122"
},
{
"category": "external",
"summary": "1090433",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1090433"
},
{
"category": "external",
"summary": "1103366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1103366"
},
{
"category": "external",
"summary": "1105650",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1105650"
},
{
"category": "external",
"summary": "1115445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1115445"
},
{
"category": "external",
"summary": "1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0197.json"
}
],
"title": "Red Hat Security Advisory: rhevm-spice-client security and bug fix update",
"tracking": {
"current_release_date": "2025-11-21T17:51:36+00:00",
"generator": {
"date": "2025-11-21T17:51:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2015:0197",
"initial_release_date": "2015-02-11T17:35:16+00:00",
"revision_history": [
{
"date": "2015-02-11T17:35:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-02-11T17:35:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:51:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEV-M 3.5",
"product": {
"name": "RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhev_manager:3"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x64-cab@3.5-2.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x64-msi@3.5-2.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x86-msi@3.5-2.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x86-cab@3.5-2.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "rhevm-spice-client-0:3.5-2.el6.src",
"product": {
"name": "rhevm-spice-client-0:3.5-2.el6.src",
"product_id": "rhevm-spice-client-0:3.5-2.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client@3.5-2.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-0:3.5-2.el6.src as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src"
},
"product_reference": "rhevm-spice-client-0:3.5-2.el6.src",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3509",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127498"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the way OpenSSL handled ServerHello messages with an included Supported EC Point Format extension. A malicious server could possibly use this flaw to cause a multi-threaded TLS/SSL client using OpenSSL to write into freed memory, causing the client to crash or execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: race condition in ssl_parse_serverhello_tlsext",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "RHBZ#1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-11T17:35:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0197"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: race condition in ssl_parse_serverhello_tlsext"
},
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-11T17:35:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0197"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
}
]
}
RHSA-2015_0197
Vulnerability from csaf_redhat - Published: 2015-02-11 17:35 - Updated: 2024-11-14 14:33Summary
Red Hat Security Advisory: rhevm-spice-client security and bug fix update
Notes
Topic
Updated rhevm-spice-client packages that fix two security issues and
several bugs are now available for Red Hat Enterprise Virtualization
Manager 3.
Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
Red Hat Enterprise Virtualization Manager provides access to virtual
machines using SPICE. These SPICE client packages provide the SPICE client
and usbclerk service for both Windows 32-bit operating systems and Windows
64-bit operating systems.
A race condition was found in the way OpenSSL handled ServerHello messages
with an included Supported EC Point Format extension. A malicious server
could possibly use this flaw to cause a multi-threaded TLS/SSL client using
OpenSSL to write into freed memory, causing the client to crash or execute
arbitrary code. (CVE-2014-3509)
A flaw was found in the way OpenSSL handled fragmented handshake packets.
A man-in-the-middle attacker could use this flaw to force a TLS/SSL server
using OpenSSL to use TLS 1.0, even if both the client and the server
supported newer protocol versions. (CVE-2014-3511)
This update also fixes the following bugs:
* Previously, various clipboard managers, operating on the client or on the
guest, would occasionally lose synchronization, which resulted in clipboard
data loss and the SPICE console freezing. Now, spice-gtk have been patched,
such that clipboard synchronization does not freeze the SPICE console
anymore. (BZ#1083489)
* Prior to this update, when a SPICE console was launched from the Red Hat
Enterprise Virtualization User Portal with the 'Native Client' invocation
method and 'Open in Full Screen' selected, the displays of the guest
virtual machine were not always configured to match the client displays.
After this update, the SPICE console will show a full-screen guest display
for each client monitor. (BZ#1076243)
* A difference in behavior between Linux and Windows clients caused an
extra nul character to be sent when pasting text in a guest machine from a
Windows client. This invisible character was visible in some Java
applications. With this update, the extra nul character is removed from
text strings and no more extraneous character would appear. (BZ#1090122)
* Previously, If the clipboard is of type image/bmp, and the data is of 0
size, GTK+ will crash. With this update, the data size is checked first,
and GTK+ no longer crashes when clipboard is of type image/bmp, and the
data is of 0 size. (BZ#1090433)
* Modifier-only key combinations cannot be registered by users as hotkeys
so if a user tries to set a modifier-only key sequence (for example,
'ctrl+alt') as the hotkey for releasing the cursor, it will fail, and the
user will be able to release the cursor from the window. With this update,
when a modifier-only hotkey is attempted to be registered, it will fall
back to the default cursor-release sequence (which happens to be
'ctrl+alt'). (BZ#985319)
* Display configuration sometimes used outdated information about the
position of the remote-viewer windows in order to align and configure the
guest displays. Occasionally, this caused the guest displays to became
unexpectedly swapped when a window is resized. With this update,
remote-viewer will always use the current window locations to align
displays, rather than using a possibly outdated cached location
information. (BZ#1018182)
All rhevm-spice-client users are advised to upgrade to these updated
packages, which contain backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated rhevm-spice-client packages that fix two security issues and\nseveral bugs are now available for Red Hat Enterprise Virtualization\nManager 3.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems.\n\nA race condition was found in the way OpenSSL handled ServerHello messages\nwith an included Supported EC Point Format extension. A malicious server\ncould possibly use this flaw to cause a multi-threaded TLS/SSL client using\nOpenSSL to write into freed memory, causing the client to crash or execute\narbitrary code. (CVE-2014-3509)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets.\nA man-in-the-middle attacker could use this flaw to force a TLS/SSL server\nusing OpenSSL to use TLS 1.0, even if both the client and the server\nsupported newer protocol versions. (CVE-2014-3511)\n\nThis update also fixes the following bugs:\n\n* Previously, various clipboard managers, operating on the client or on the\nguest, would occasionally lose synchronization, which resulted in clipboard\ndata loss and the SPICE console freezing. Now, spice-gtk have been patched,\nsuch that clipboard synchronization does not freeze the SPICE console\nanymore. (BZ#1083489)\n\n* Prior to this update, when a SPICE console was launched from the Red Hat\nEnterprise Virtualization User Portal with the \u0027Native Client\u0027 invocation\nmethod and \u0027Open in Full Screen\u0027 selected, the displays of the guest\nvirtual machine were not always configured to match the client displays.\nAfter this update, the SPICE console will show a full-screen guest display\nfor each client monitor. (BZ#1076243)\n\n* A difference in behavior between Linux and Windows clients caused an\nextra nul character to be sent when pasting text in a guest machine from a\nWindows client. This invisible character was visible in some Java\napplications. With this update, the extra nul character is removed from\ntext strings and no more extraneous character would appear. (BZ#1090122)\n\n* Previously, If the clipboard is of type image/bmp, and the data is of 0\nsize, GTK+ will crash. With this update, the data size is checked first,\nand GTK+ no longer crashes when clipboard is of type image/bmp, and the\ndata is of 0 size. (BZ#1090433)\n\n* Modifier-only key combinations cannot be registered by users as hotkeys\nso if a user tries to set a modifier-only key sequence (for example,\n\u0027ctrl+alt\u0027) as the hotkey for releasing the cursor, it will fail, and the\nuser will be able to release the cursor from the window. With this update,\nwhen a modifier-only hotkey is attempted to be registered, it will fall\nback to the default cursor-release sequence (which happens to be\n\u0027ctrl+alt\u0027). (BZ#985319)\n\n* Display configuration sometimes used outdated information about the\nposition of the remote-viewer windows in order to align and configure the\nguest displays. Occasionally, this caused the guest displays to became\nunexpectedly swapped when a window is resized. With this update,\nremote-viewer will always use the current window locations to align\ndisplays, rather than using a possibly outdated cached location\ninformation. (BZ#1018182)\n\nAll rhevm-spice-client users are advised to upgrade to these updated\npackages, which contain backported patches to correct these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:0197",
"url": "https://access.redhat.com/errata/RHSA-2015:0197"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1018145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018145"
},
{
"category": "external",
"summary": "1018182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018182"
},
{
"category": "external",
"summary": "1076243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1076243"
},
{
"category": "external",
"summary": "1083489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1083489"
},
{
"category": "external",
"summary": "1090122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1090122"
},
{
"category": "external",
"summary": "1090433",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1090433"
},
{
"category": "external",
"summary": "1103366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1103366"
},
{
"category": "external",
"summary": "1105650",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1105650"
},
{
"category": "external",
"summary": "1115445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1115445"
},
{
"category": "external",
"summary": "1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0197.json"
}
],
"title": "Red Hat Security Advisory: rhevm-spice-client security and bug fix update",
"tracking": {
"current_release_date": "2024-11-14T14:33:45+00:00",
"generator": {
"date": "2024-11-14T14:33:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.0"
}
},
"id": "RHSA-2015:0197",
"initial_release_date": "2015-02-11T17:35:16+00:00",
"revision_history": [
{
"date": "2015-02-11T17:35:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-02-11T17:35:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-14T14:33:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEV-M 3.5",
"product": {
"name": "RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhev_manager:3"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x64-cab@3.5-2.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x64-msi@3.5-2.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x86-msi@3.5-2.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"product": {
"name": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"product_id": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client-x86-cab@3.5-2.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "rhevm-spice-client-0:3.5-2.el6.src",
"product": {
"name": "rhevm-spice-client-0:3.5-2.el6.src",
"product_id": "rhevm-spice-client-0:3.5-2.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhevm-spice-client@3.5-2.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-0:3.5-2.el6.src as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src"
},
"product_reference": "rhevm-spice-client-0:3.5-2.el6.src",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch as a component of RHEV-M 3.5",
"product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
},
"product_reference": "rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch",
"relates_to_product_reference": "6Server-RHEV-S-3.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3509",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127498"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the way OpenSSL handled ServerHello messages with an included Supported EC Point Format extension. A malicious server could possibly use this flaw to cause a multi-threaded TLS/SSL client using OpenSSL to write into freed memory, causing the client to crash or execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: race condition in ssl_parse_serverhello_tlsext",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "RHBZ#1127498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127498"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3509"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3509"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-11T17:35:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0197"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: race condition in ssl_parse_serverhello_tlsext"
},
{
"cve": "CVE-2014-3511",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-08-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1127504"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenSSL handled fragmented handshake packets. A man-in-the-middle attacker could use this flaw to force a TLS/SSL server using OpenSSL to use TLS 1.0, even if both the client and the server supported newer protocol versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: TLS protocol downgrade attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "RHBZ#1127504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3511"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv_20140806.txt",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"release_date": "2014-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-02-11T17:35:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0197"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-2.el6.src",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-2.el6.noarch",
"6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-2.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: TLS protocol downgrade attack"
}
]
}
OPENSUSE-SU-2024:11127-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libopenssl-1_1-devel-1.1.1l-1.2 on GA media
Notes
Title of the patch
libopenssl-1_1-devel-1.1.1l-1.2 on GA media
Description of the patch
These are all security issues fixed in the libopenssl-1_1-devel-1.1.1l-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11127
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libopenssl-1_1-devel-1.1.1l-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libopenssl-1_1-devel-1.1.1l-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11127",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11127-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-2937 page",
"url": "https://www.suse.com/security/cve/CVE-2006-2937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-2940 page",
"url": "https://www.suse.com/security/cve/CVE-2006-2940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-3738 page",
"url": "https://www.suse.com/security/cve/CVE-2006-3738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-4339 page",
"url": "https://www.suse.com/security/cve/CVE-2006-4339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-4343 page",
"url": "https://www.suse.com/security/cve/CVE-2006-4343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-7250 page",
"url": "https://www.suse.com/security/cve/CVE-2006-7250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3108 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-5135 page",
"url": "https://www.suse.com/security/cve/CVE-2007-5135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-0891 page",
"url": "https://www.suse.com/security/cve/CVE-2008-0891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-1672 page",
"url": "https://www.suse.com/security/cve/CVE-2008-1672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5077 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0590 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0591 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0789 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1377 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1377/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1378 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1379 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1386 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1386/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1387 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1387/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0740 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0742 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1633 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-2939 page",
"url": "https://www.suse.com/security/cve/CVE-2010-2939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3864 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-5298 page",
"url": "https://www.suse.com/security/cve/CVE-2010-5298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-0014 page",
"url": "https://www.suse.com/security/cve/CVE-2011-0014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3207 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4108 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4576 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4577 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4619 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0027 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0050 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0884 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-1165 page",
"url": "https://www.suse.com/security/cve/CVE-2012-1165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2110 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2686 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-4929 page",
"url": "https://www.suse.com/security/cve/CVE-2012-4929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0166 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0169 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4353 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6449 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6450 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6450/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0076 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0160 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0195 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0198 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0221 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0224 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3470 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3505 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3513 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3567 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3568 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3569 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0204 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0293 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1791 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1793 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1794 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3193 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3194 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3195 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3196 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3197 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0701 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0702 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0705 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0797 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0798 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0800 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2105 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2106 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2107 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2109 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2109/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2176 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2177 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2178 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2179 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2180 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2181 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2182 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2183 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6302 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6303 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6304 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6306 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7052 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7055 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7056 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-3731 page",
"url": "https://www.suse.com/security/cve/CVE-2017-3731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-3732 page",
"url": "https://www.suse.com/security/cve/CVE-2017-3732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-3735 page",
"url": "https://www.suse.com/security/cve/CVE-2017-3735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-3736 page",
"url": "https://www.suse.com/security/cve/CVE-2017-3736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-3738 page",
"url": "https://www.suse.com/security/cve/CVE-2017-3738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-0732 page",
"url": "https://www.suse.com/security/cve/CVE-2018-0732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-0734 page",
"url": "https://www.suse.com/security/cve/CVE-2018-0734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-0735 page",
"url": "https://www.suse.com/security/cve/CVE-2018-0735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-0737 page",
"url": "https://www.suse.com/security/cve/CVE-2018-0737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-0739 page",
"url": "https://www.suse.com/security/cve/CVE-2018-0739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-1543 page",
"url": "https://www.suse.com/security/cve/CVE-2019-1543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-1547 page",
"url": "https://www.suse.com/security/cve/CVE-2019-1547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-1549 page",
"url": "https://www.suse.com/security/cve/CVE-2019-1549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-1551 page",
"url": "https://www.suse.com/security/cve/CVE-2019-1551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-1563 page",
"url": "https://www.suse.com/security/cve/CVE-2019-1563/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-1967 page",
"url": "https://www.suse.com/security/cve/CVE-2020-1967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-1971 page",
"url": "https://www.suse.com/security/cve/CVE-2020-1971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23840 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23840/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23841 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3449 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3450 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3450/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3711 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3711/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3712 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3712/"
}
],
"title": "libopenssl-1_1-devel-1.1.1l-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11127-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"product_id": "libopenssl-1_1-devel-1.1.1l-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"product": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"product_id": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-1.2.aarch64",
"product": {
"name": "libopenssl1_1-1.1.1l-1.2.aarch64",
"product_id": "libopenssl1_1-1.1.1l-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"product": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"product_id": "libopenssl1_1-32bit-1.1.1l-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"product_id": "libopenssl1_1-hmac-1.1.1l-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-1.2.aarch64",
"product": {
"name": "openssl-1_1-1.1.1l-1.2.aarch64",
"product_id": "openssl-1_1-1.1.1l-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-doc-1.1.1l-1.2.aarch64",
"product": {
"name": "openssl-1_1-doc-1.1.1l-1.2.aarch64",
"product_id": "openssl-1_1-doc-1.1.1l-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"product_id": "libopenssl-1_1-devel-1.1.1l-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"product": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"product_id": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-1.2.ppc64le",
"product": {
"name": "libopenssl1_1-1.1.1l-1.2.ppc64le",
"product_id": "libopenssl1_1-1.1.1l-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"product": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"product_id": "libopenssl1_1-32bit-1.1.1l-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"product_id": "libopenssl1_1-hmac-1.1.1l-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-1.2.ppc64le",
"product": {
"name": "openssl-1_1-1.1.1l-1.2.ppc64le",
"product_id": "openssl-1_1-1.1.1l-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"product": {
"name": "openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"product_id": "openssl-1_1-doc-1.1.1l-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"product_id": "libopenssl-1_1-devel-1.1.1l-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"product": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"product_id": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-1.2.s390x",
"product": {
"name": "libopenssl1_1-1.1.1l-1.2.s390x",
"product_id": "libopenssl1_1-1.1.1l-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"product": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"product_id": "libopenssl1_1-32bit-1.1.1l-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"product_id": "libopenssl1_1-hmac-1.1.1l-1.2.s390x"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-1.2.s390x",
"product": {
"name": "openssl-1_1-1.1.1l-1.2.s390x",
"product_id": "openssl-1_1-1.1.1l-1.2.s390x"
}
},
{
"category": "product_version",
"name": "openssl-1_1-doc-1.1.1l-1.2.s390x",
"product": {
"name": "openssl-1_1-doc-1.1.1l-1.2.s390x",
"product_id": "openssl-1_1-doc-1.1.1l-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"product_id": "libopenssl-1_1-devel-1.1.1l-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"product": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"product_id": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-1.2.x86_64",
"product": {
"name": "libopenssl1_1-1.1.1l-1.2.x86_64",
"product_id": "libopenssl1_1-1.1.1l-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"product": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"product_id": "libopenssl1_1-32bit-1.1.1l-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"product_id": "libopenssl1_1-hmac-1.1.1l-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-1.2.x86_64",
"product": {
"name": "openssl-1_1-1.1.1l-1.2.x86_64",
"product_id": "openssl-1_1-1.1.1l-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-doc-1.1.1l-1.2.x86_64",
"product": {
"name": "openssl-1_1-doc-1.1.1l-1.2.x86_64",
"product_id": "openssl-1_1-doc-1.1.1l-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x"
},
"product_reference": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x"
},
"product_reference": "libopenssl1_1-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x"
},
"product_reference": "openssl-1_1-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-doc-1.1.1l-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64"
},
"product_reference": "openssl-1_1-doc-1.1.1l-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-doc-1.1.1l-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le"
},
"product_reference": "openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-doc-1.1.1l-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x"
},
"product_reference": "openssl-1_1-doc-1.1.1l-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-doc-1.1.1l-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
},
"product_reference": "openssl-1_1-doc-1.1.1l-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2006-2937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-2937"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service (infinite loop and memory consumption) via malformed ASN.1 structures that trigger an improperly handled error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-2937",
"url": "https://www.suse.com/security/cve/CVE-2006-2937"
},
{
"category": "external",
"summary": "SUSE Bug 202366 for CVE-2006-2937",
"url": "https://bugzilla.suse.com/202366"
},
{
"category": "external",
"summary": "SUSE Bug 207635 for CVE-2006-2937",
"url": "https://bugzilla.suse.com/207635"
},
{
"category": "external",
"summary": "SUSE Bug 215623 for CVE-2006-2937",
"url": "https://bugzilla.suse.com/215623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2006-2937"
},
{
"cve": "CVE-2006-2940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-2940"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers to cause a denial of service (CPU consumption) via parasitic public keys with large (1) \"public exponent\" or (2) \"public modulus\" values in X.509 certificates that require extra time to process when using RSA signature verification.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-2940",
"url": "https://www.suse.com/security/cve/CVE-2006-2940"
},
{
"category": "external",
"summary": "SUSE Bug 202366 for CVE-2006-2940",
"url": "https://bugzilla.suse.com/202366"
},
{
"category": "external",
"summary": "SUSE Bug 207635 for CVE-2006-2940",
"url": "https://bugzilla.suse.com/207635"
},
{
"category": "external",
"summary": "SUSE Bug 208971 for CVE-2006-2940",
"url": "https://bugzilla.suse.com/208971"
},
{
"category": "external",
"summary": "SUSE Bug 215623 for CVE-2006-2940",
"url": "https://bugzilla.suse.com/215623"
},
{
"category": "external",
"summary": "SUSE Bug 223040 for CVE-2006-2940",
"url": "https://bugzilla.suse.com/223040"
},
{
"category": "external",
"summary": "SUSE Bug 992991 for CVE-2006-2940",
"url": "https://bugzilla.suse.com/992991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2006-2940"
},
{
"cve": "CVE-2006-3738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-3738"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-3738",
"url": "https://www.suse.com/security/cve/CVE-2006-3738"
},
{
"category": "external",
"summary": "SUSE Bug 202366 for CVE-2006-3738",
"url": "https://bugzilla.suse.com/202366"
},
{
"category": "external",
"summary": "SUSE Bug 215623 for CVE-2006-3738",
"url": "https://bugzilla.suse.com/215623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2006-3738"
},
{
"cve": "CVE-2006-4339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-4339"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-4339",
"url": "https://www.suse.com/security/cve/CVE-2006-4339"
},
{
"category": "external",
"summary": "SUSE Bug 202366 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/202366"
},
{
"category": "external",
"summary": "SUSE Bug 203595 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/203595"
},
{
"category": "external",
"summary": "SUSE Bug 206636 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/206636"
},
{
"category": "external",
"summary": "SUSE Bug 207635 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/207635"
},
{
"category": "external",
"summary": "SUSE Bug 215623 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/215623"
},
{
"category": "external",
"summary": "SUSE Bug 218303 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/218303"
},
{
"category": "external",
"summary": "SUSE Bug 233584 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/233584"
},
{
"category": "external",
"summary": "SUSE Bug 564512 for CVE-2006-4339",
"url": "https://bugzilla.suse.com/564512"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2006-4339"
},
{
"cve": "CVE-2006-4343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-4343"
}
],
"notes": [
{
"category": "general",
"text": "The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-4343",
"url": "https://www.suse.com/security/cve/CVE-2006-4343"
},
{
"category": "external",
"summary": "SUSE Bug 202366 for CVE-2006-4343",
"url": "https://bugzilla.suse.com/202366"
},
{
"category": "external",
"summary": "SUSE Bug 207635 for CVE-2006-4343",
"url": "https://bugzilla.suse.com/207635"
},
{
"category": "external",
"summary": "SUSE Bug 215623 for CVE-2006-4343",
"url": "https://bugzilla.suse.com/215623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2006-4343"
},
{
"cve": "CVE-2006-7250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-7250"
}
],
"notes": [
{
"category": "general",
"text": "The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-7250",
"url": "https://www.suse.com/security/cve/CVE-2006-7250"
},
{
"category": "external",
"summary": "SUSE Bug 748738 for CVE-2006-7250",
"url": "https://bugzilla.suse.com/748738"
},
{
"category": "external",
"summary": "SUSE Bug 883307 for CVE-2006-7250",
"url": "https://bugzilla.suse.com/883307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2006-7250"
},
{
"cve": "CVE-2007-3108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3108"
}
],
"notes": [
{
"category": "general",
"text": "The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3108",
"url": "https://www.suse.com/security/cve/CVE-2007-3108"
},
{
"category": "external",
"summary": "SUSE Bug 296511 for CVE-2007-3108",
"url": "https://bugzilla.suse.com/296511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-3108"
},
{
"cve": "CVE-2007-5135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-5135"
}
],
"notes": [
{
"category": "general",
"text": "Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-5135",
"url": "https://www.suse.com/security/cve/CVE-2007-5135"
},
{
"category": "external",
"summary": "SUSE Bug 329208 for CVE-2007-5135",
"url": "https://bugzilla.suse.com/329208"
},
{
"category": "external",
"summary": "SUSE Bug 331726 for CVE-2007-5135",
"url": "https://bugzilla.suse.com/331726"
},
{
"category": "external",
"summary": "SUSE Bug 363663 for CVE-2007-5135",
"url": "https://bugzilla.suse.com/363663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-5135"
},
{
"cve": "CVE-2008-0891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-0891"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a malformed Client Hello packet. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-0891",
"url": "https://www.suse.com/security/cve/CVE-2008-0891"
},
{
"category": "external",
"summary": "SUSE Bug 394317 for CVE-2008-0891",
"url": "https://bugzilla.suse.com/394317"
},
{
"category": "external",
"summary": "SUSE Bug 404511 for CVE-2008-0891",
"url": "https://bugzilla.suse.com/404511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-0891"
},
{
"cve": "CVE-2008-1672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-1672"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS handshake that omits the Server Key Exchange message and uses \"particular cipher suites,\" which triggers a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-1672",
"url": "https://www.suse.com/security/cve/CVE-2008-1672"
},
{
"category": "external",
"summary": "SUSE Bug 394317 for CVE-2008-1672",
"url": "https://bugzilla.suse.com/394317"
},
{
"category": "external",
"summary": "SUSE Bug 404511 for CVE-2008-1672",
"url": "https://bugzilla.suse.com/404511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-1672"
},
{
"cve": "CVE-2008-5077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5077"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5077",
"url": "https://www.suse.com/security/cve/CVE-2008-5077"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 465675 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/465675"
},
{
"category": "external",
"summary": "SUSE Bug 465676 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/465676"
},
{
"category": "external",
"summary": "SUSE Bug 468866 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/468866"
},
{
"category": "external",
"summary": "SUSE Bug 470968 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/470968"
},
{
"category": "external",
"summary": "SUSE Bug 475108 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/475108"
},
{
"category": "external",
"summary": "SUSE Bug 552497 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/552497"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 708266 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/708266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-5077"
},
{
"cve": "CVE-2009-0590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0590"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0590",
"url": "https://www.suse.com/security/cve/CVE-2009-0590"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-0590"
},
{
"cve": "CVE-2009-0591",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0591"
}
],
"notes": [
{
"category": "general",
"text": "The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote attackers to repudiate a signature that originally appeared to be valid but was actually invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0591",
"url": "https://www.suse.com/security/cve/CVE-2009-0591"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0591",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0591",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2009-0591"
},
{
"cve": "CVE-2009-0789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0789"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0789",
"url": "https://www.suse.com/security/cve/CVE-2009-0789"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-0789"
},
{
"cve": "CVE-2009-1377",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1377"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of \"future epoch\" DTLS records that are buffered in a queue, aka \"DTLS record buffer limitation bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1377",
"url": "https://www.suse.com/security/cve/CVE-2009-1377"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1377"
},
{
"cve": "CVE-2009-1378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1378"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka \"DTLS fragment handling memory leak.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1378",
"url": "https://www.suse.com/security/cve/CVE-2009-1378"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1378"
},
{
"cve": "CVE-2009-1379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1379"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service (openssl s_client crash) and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server that uses a crafted server certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1379",
"url": "https://www.suse.com/security/cve/CVE-2009-1379"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1379"
},
{
"cve": "CVE-2009-1386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1386"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1386",
"url": "https://www.suse.com/security/cve/CVE-2009-1386"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 509031 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/509031"
},
{
"category": "external",
"summary": "SUSE Bug 515659 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/515659"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1386"
},
{
"cve": "CVE-2009-1387",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1387"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a \"fragment bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1387",
"url": "https://www.suse.com/security/cve/CVE-2009-1387"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 509031 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/509031"
},
{
"category": "external",
"summary": "SUSE Bug 515659 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/515659"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1387"
},
{
"cve": "CVE-2010-0740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0740"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0740",
"url": "https://www.suse.com/security/cve/CVE-2010-0740"
},
{
"category": "external",
"summary": "SUSE Bug 590833 for CVE-2010-0740",
"url": "https://bugzilla.suse.com/590833"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-0740",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0740"
},
{
"cve": "CVE-2010-0742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0742"
}
],
"notes": [
{
"category": "general",
"text": "The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, and possibly execute arbitrary code, via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0742",
"url": "https://www.suse.com/security/cve/CVE-2010-0742"
},
{
"category": "external",
"summary": "SUSE Bug 610642 for CVE-2010-0742",
"url": "https://bugzilla.suse.com/610642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-0742"
},
{
"cve": "CVE-2010-1633",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1633"
}
],
"notes": [
{
"category": "general",
"text": "RSA verification recovery in the EVP_PKEY_verify_recover function in OpenSSL 1.x before 1.0.0a, as used by pkeyutl and possibly other applications, returns uninitialized memory upon failure, which might allow context-dependent attackers to bypass intended key requirements or obtain sensitive information via unspecified vectors. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1633",
"url": "https://www.suse.com/security/cve/CVE-2010-1633"
},
{
"category": "external",
"summary": "SUSE Bug 610642 for CVE-2010-1633",
"url": "https://bugzilla.suse.com/610642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1633"
},
{
"cve": "CVE-2010-2939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-2939"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-2939",
"url": "https://www.suse.com/security/cve/CVE-2010-2939"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2010-2939",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-2939",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-2939"
},
{
"cve": "CVE-2010-3864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3864"
}
],
"notes": [
{
"category": "general",
"text": "Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3864",
"url": "https://www.suse.com/security/cve/CVE-2010-3864"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-3864",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 651003 for CVE-2010-3864",
"url": "https://bugzilla.suse.com/651003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-3864"
},
{
"cve": "CVE-2010-5298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-5298"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-5298",
"url": "https://www.suse.com/security/cve/CVE-2010-5298"
},
{
"category": "external",
"summary": "SUSE Bug 873351 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2010-5298"
},
{
"cve": "CVE-2011-0014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-0014"
}
],
"notes": [
{
"category": "general",
"text": "ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka \"OCSP stapling vulnerability.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-0014",
"url": "https://www.suse.com/security/cve/CVE-2011-0014"
},
{
"category": "external",
"summary": "SUSE Bug 670526 for CVE-2011-0014",
"url": "https://bugzilla.suse.com/670526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-0014"
},
{
"cve": "CVE-2011-3207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3207"
}
],
"notes": [
{
"category": "general",
"text": "crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3207",
"url": "https://www.suse.com/security/cve/CVE-2011-3207"
},
{
"category": "external",
"summary": "SUSE Bug 716143 for CVE-2011-3207",
"url": "https://bugzilla.suse.com/716143"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-3207",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3207"
},
{
"cve": "CVE-2011-4108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4108"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4108",
"url": "https://www.suse.com/security/cve/CVE-2011-4108"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 742821 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/742821"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4108"
},
{
"cve": "CVE-2011-4576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4576"
}
],
"notes": [
{
"category": "general",
"text": "The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4576",
"url": "https://www.suse.com/security/cve/CVE-2011-4576"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4576"
},
{
"cve": "CVE-2011-4577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4577"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4577",
"url": "https://www.suse.com/security/cve/CVE-2011-4577"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4577"
},
{
"cve": "CVE-2011-4619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4619"
}
],
"notes": [
{
"category": "general",
"text": "The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4619",
"url": "https://www.suse.com/security/cve/CVE-2011-4619"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 799454 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/799454"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4619"
},
{
"cve": "CVE-2012-0027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0027"
}
],
"notes": [
{
"category": "general",
"text": "The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0027",
"url": "https://www.suse.com/security/cve/CVE-2012-0027"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2012-0027",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-0027",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0027"
},
{
"cve": "CVE-2012-0050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0050"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0050",
"url": "https://www.suse.com/security/cve/CVE-2012-0050"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 742821 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/742821"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/758060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0050"
},
{
"cve": "CVE-2012-0884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0884"
}
],
"notes": [
{
"category": "general",
"text": "The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack (MMA) adaptive chosen ciphertext attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0884",
"url": "https://www.suse.com/security/cve/CVE-2012-0884"
},
{
"category": "external",
"summary": "SUSE Bug 749210 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/749210"
},
{
"category": "external",
"summary": "SUSE Bug 749735 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/749735"
},
{
"category": "external",
"summary": "SUSE Bug 751977 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/751977"
},
{
"category": "external",
"summary": "SUSE Bug 754640 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/754640"
},
{
"category": "external",
"summary": "SUSE Bug 761819 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/761819"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0884"
},
{
"cve": "CVE-2012-1165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-1165"
}
],
"notes": [
{
"category": "general",
"text": "The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-1165",
"url": "https://www.suse.com/security/cve/CVE-2012-1165"
},
{
"category": "external",
"summary": "SUSE Bug 749210 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/749210"
},
{
"category": "external",
"summary": "SUSE Bug 749213 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/749213"
},
{
"category": "external",
"summary": "SUSE Bug 751946 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/751946"
},
{
"category": "external",
"summary": "SUSE Bug 754640 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/754640"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-1165"
},
{
"cve": "CVE-2012-2110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2110"
}
],
"notes": [
{
"category": "general",
"text": "The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an X.509 certificate or an RSA public key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2110",
"url": "https://www.suse.com/security/cve/CVE-2012-2110"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2012-2110"
},
{
"cve": "CVE-2012-2686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2686"
}
],
"notes": [
{
"category": "general",
"text": "crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2686",
"url": "https://www.suse.com/security/cve/CVE-2012-2686"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2012-2686",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-2686",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2686"
},
{
"cve": "CVE-2012-4929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-4929"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a \"CRIME\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-4929",
"url": "https://www.suse.com/security/cve/CVE-2012-4929"
},
{
"category": "external",
"summary": "SUSE Bug 1011293 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/1011293"
},
{
"category": "external",
"summary": "SUSE Bug 779952 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/779952"
},
{
"category": "external",
"summary": "SUSE Bug 793420 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/793420"
},
{
"category": "external",
"summary": "SUSE Bug 803004 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/803004"
},
{
"category": "external",
"summary": "SUSE Bug 847895 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/847895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-4929"
},
{
"cve": "CVE-2013-0166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0166"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCSP servers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0166",
"url": "https://www.suse.com/security/cve/CVE-2013-0166"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 802746 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/802746"
},
{
"category": "external",
"summary": "SUSE Bug 813366 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/813366"
},
{
"category": "external",
"summary": "SUSE Bug 821818 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/821818"
},
{
"category": "external",
"summary": "SUSE Bug 833408 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/833408"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/854391"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-0166"
},
{
"cve": "CVE-2013-0169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0169"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0169",
"url": "https://www.suse.com/security/cve/CVE-2013-0169"
},
{
"category": "external",
"summary": "SUSE Bug 1070148 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1070148"
},
{
"category": "external",
"summary": "SUSE Bug 1103036 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1103036"
},
{
"category": "external",
"summary": "SUSE Bug 1103597 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1103597"
},
{
"category": "external",
"summary": "SUSE Bug 802184 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802184"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 802746 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802746"
},
{
"category": "external",
"summary": "SUSE Bug 803379 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/803379"
},
{
"category": "external",
"summary": "SUSE Bug 804654 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/804654"
},
{
"category": "external",
"summary": "SUSE Bug 809839 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/809839"
},
{
"category": "external",
"summary": "SUSE Bug 813366 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/813366"
},
{
"category": "external",
"summary": "SUSE Bug 813939 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/813939"
},
{
"category": "external",
"summary": "SUSE Bug 821818 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/821818"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977616 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/977616"
},
{
"category": "external",
"summary": "SUSE Bug 984977 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/984977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-0169"
},
{
"cve": "CVE-2013-4353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4353"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4353",
"url": "https://www.suse.com/security/cve/CVE-2013-4353"
},
{
"category": "external",
"summary": "SUSE Bug 857640 for CVE-2013-4353",
"url": "https://bugzilla.suse.com/857640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-4353"
},
{
"cve": "CVE-2013-6449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6449"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6449",
"url": "https://www.suse.com/security/cve/CVE-2013-6449"
},
{
"category": "external",
"summary": "SUSE Bug 856687 for CVE-2013-6449",
"url": "https://bugzilla.suse.com/856687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6449"
},
{
"cve": "CVE-2013-6450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6450"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6450",
"url": "https://www.suse.com/security/cve/CVE-2013-6450"
},
{
"category": "external",
"summary": "SUSE Bug 857203 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/857203"
},
{
"category": "external",
"summary": "SUSE Bug 861384 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/861384"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6450"
},
{
"cve": "CVE-2014-0076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0076"
}
],
"notes": [
{
"category": "general",
"text": "The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0076",
"url": "https://www.suse.com/security/cve/CVE-2014-0076"
},
{
"category": "external",
"summary": "SUSE Bug 869945 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/869945"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0076"
},
{
"cve": "CVE-2014-0160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0160"
}
],
"notes": [
{
"category": "general",
"text": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0160",
"url": "https://www.suse.com/security/cve/CVE-2014-0160"
},
{
"category": "external",
"summary": "SUSE Bug 872299 for CVE-2014-0160",
"url": "https://bugzilla.suse.com/872299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-0160"
},
{
"cve": "CVE-2014-0195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0195"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0195",
"url": "https://www.suse.com/security/cve/CVE-2014-0195"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0195"
},
{
"cve": "CVE-2014-0198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0198"
}
],
"notes": [
{
"category": "general",
"text": "The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0198",
"url": "https://www.suse.com/security/cve/CVE-2014-0198"
},
{
"category": "external",
"summary": "SUSE Bug 876282 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0198"
},
{
"cve": "CVE-2014-0221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0221"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0221",
"url": "https://www.suse.com/security/cve/CVE-2014-0221"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0221"
},
{
"cve": "CVE-2014-0224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0224"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0224",
"url": "https://www.suse.com/security/cve/CVE-2014-0224"
},
{
"category": "external",
"summary": "SUSE Bug 1146657 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/1146657"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 881743 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/881743"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 892403 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/892403"
},
{
"category": "external",
"summary": "SUSE Bug 901237 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/901237"
},
{
"category": "external",
"summary": "SUSE Bug 903703 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/903703"
},
{
"category": "external",
"summary": "SUSE Bug 905018 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905018"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914447 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/914447"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/915913"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/916239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-0224"
},
{
"cve": "CVE-2014-3470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3470"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3470",
"url": "https://www.suse.com/security/cve/CVE-2014-3470"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3470"
},
{
"cve": "CVE-2014-3505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3505"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3505",
"url": "https://www.suse.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890767 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3513"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3513",
"url": "https://www.suse.com/security/cve/CVE-2014-3513"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3513",
"url": "https://bugzilla.suse.com/901277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3513"
},
{
"cve": "CVE-2014-3567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3567"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3567",
"url": "https://www.suse.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "SUSE Bug 877506 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/877506"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3567"
},
{
"cve": "CVE-2014-3568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3568"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3568",
"url": "https://www.suse.com/security/cve/CVE-2014-3568"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3568"
},
{
"cve": "CVE-2014-3569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3569"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3569",
"url": "https://www.suse.com/security/cve/CVE-2014-3569"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3569"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3571"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3571",
"url": "https://www.suse.com/security/cve/CVE-2014-3571"
},
{
"category": "external",
"summary": "SUSE Bug 912294 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/927623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3571"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0204"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the \"FREAK\" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0204",
"url": "https://www.suse.com/security/cve/CVE-2015-0204"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 920482 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920482"
},
{
"category": "external",
"summary": "SUSE Bug 920484 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920484"
},
{
"category": "external",
"summary": "SUSE Bug 927591 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927591"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 936787 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/936787"
},
{
"category": "external",
"summary": "SUSE Bug 952088 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/952088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0204"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-0293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0293"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0293",
"url": "https://www.suse.com/security/cve/CVE-2015-0293"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922488 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968051 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968051"
},
{
"category": "external",
"summary": "SUSE Bug 968053 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968053"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0293"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1791"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1791",
"url": "https://www.suse.com/security/cve/CVE-2015-1791"
},
{
"category": "external",
"summary": "SUSE Bug 933911 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/986238"
},
{
"category": "external",
"summary": "SUSE Bug 989464 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/989464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1791"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-1793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1793"
}
],
"notes": [
{
"category": "general",
"text": "The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1793",
"url": "https://www.suse.com/security/cve/CVE-2015-1793"
},
{
"category": "external",
"summary": "SUSE Bug 936746 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/936746"
},
{
"category": "external",
"summary": "SUSE Bug 937637 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/937637"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1793"
},
{
"cve": "CVE-2015-1794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1794"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1794",
"url": "https://www.suse.com/security/cve/CVE-2015-1794"
},
{
"category": "external",
"summary": "SUSE Bug 957984 for CVE-2015-1794",
"url": "https://bugzilla.suse.com/957984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-1794"
},
{
"cve": "CVE-2015-3193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3193"
}
],
"notes": [
{
"category": "general",
"text": "The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3193",
"url": "https://www.suse.com/security/cve/CVE-2015-3193"
},
{
"category": "external",
"summary": "SUSE Bug 1022086 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1022086"
},
{
"category": "external",
"summary": "SUSE Bug 1066242 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1066242"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/957814"
},
{
"category": "external",
"summary": "SUSE Bug 960151 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/960151"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3193"
},
{
"cve": "CVE-2015-3194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3194"
}
],
"notes": [
{
"category": "general",
"text": "crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3194",
"url": "https://www.suse.com/security/cve/CVE-2015-3194"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/976341"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3194"
},
{
"cve": "CVE-2015-3195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3195"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3195",
"url": "https://www.suse.com/security/cve/CVE-2015-3195"
},
{
"category": "external",
"summary": "SUSE Bug 923755 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/923755"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 963977 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/963977"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3195"
},
{
"cve": "CVE-2015-3196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3196"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3196",
"url": "https://www.suse.com/security/cve/CVE-2015-3196"
},
{
"category": "external",
"summary": "SUSE Bug 957813 for CVE-2015-3196",
"url": "https://bugzilla.suse.com/957813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3196"
},
{
"cve": "CVE-2015-3197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3197"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3197",
"url": "https://www.suse.com/security/cve/CVE-2015-3197"
},
{
"category": "external",
"summary": "SUSE Bug 963410 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/963410"
},
{
"category": "external",
"summary": "SUSE Bug 963415 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/963415"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968046 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/968046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-3197"
},
{
"cve": "CVE-2016-0701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0701"
}
],
"notes": [
{
"category": "general",
"text": "The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0701",
"url": "https://www.suse.com/security/cve/CVE-2016-0701"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 1176331 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1176331"
},
{
"category": "external",
"summary": "SUSE Bug 1195379 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1195379"
},
{
"category": "external",
"summary": "SUSE Bug 963410 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/963410"
},
{
"category": "external",
"summary": "SUSE Bug 963413 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/963413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0701"
},
{
"cve": "CVE-2016-0702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0702"
}
],
"notes": [
{
"category": "general",
"text": "The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a \"CacheBleed\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0702",
"url": "https://www.suse.com/security/cve/CVE-2016-0702"
},
{
"category": "external",
"summary": "SUSE Bug 1007806 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/1007806"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968050 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968050"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0702"
},
{
"cve": "CVE-2016-0705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0705"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0705",
"url": "https://www.suse.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968047 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/968047"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/976341"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2016-0705"
},
{
"cve": "CVE-2016-0797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0797"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0797",
"url": "https://www.suse.com/security/cve/CVE-2016-0797"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968048 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/968048"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0797"
},
{
"cve": "CVE-2016-0798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0798"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0798",
"url": "https://www.suse.com/security/cve/CVE-2016-0798"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0798",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968265 for CVE-2016-0798",
"url": "https://bugzilla.suse.com/968265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0798"
},
{
"cve": "CVE-2016-0800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0800"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a \"DROWN\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0800",
"url": "https://www.suse.com/security/cve/CVE-2016-0800"
},
{
"category": "external",
"summary": "SUSE Bug 1106871 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/1106871"
},
{
"category": "external",
"summary": "SUSE Bug 961377 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/961377"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968046 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968046"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 969591 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/969591"
},
{
"category": "external",
"summary": "SUSE Bug 979060 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/979060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0800"
},
{
"cve": "CVE-2016-2105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2105"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2105",
"url": "https://www.suse.com/security/cve/CVE-2016-2105"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977614 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/977614"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 989902 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/989902"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/990369"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2105"
},
{
"cve": "CVE-2016-2106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2106"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2106",
"url": "https://www.suse.com/security/cve/CVE-2016-2106"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977615 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/977615"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 979279 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/979279"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2106"
},
{
"cve": "CVE-2016-2107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2107"
}
],
"notes": [
{
"category": "general",
"text": "The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2107",
"url": "https://www.suse.com/security/cve/CVE-2016-2107"
},
{
"category": "external",
"summary": "SUSE Bug 976942 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/976942"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977616 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/977616"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/990369"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2107"
},
{
"cve": "CVE-2016-2109",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2109"
}
],
"notes": [
{
"category": "general",
"text": "The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2109",
"url": "https://www.suse.com/security/cve/CVE-2016-2109"
},
{
"category": "external",
"summary": "SUSE Bug 1015243 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/1015243"
},
{
"category": "external",
"summary": "SUSE Bug 976942 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/976942"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2109"
},
{
"cve": "CVE-2016-2176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2176"
}
],
"notes": [
{
"category": "general",
"text": "The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2176",
"url": "https://www.suse.com/security/cve/CVE-2016-2176"
},
{
"category": "external",
"summary": "SUSE Bug 978224 for CVE-2016-2176",
"url": "https://bugzilla.suse.com/978224"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2176",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2176"
},
{
"cve": "CVE-2016-2177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2177"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2177",
"url": "https://www.suse.com/security/cve/CVE-2016-2177"
},
{
"category": "external",
"summary": "SUSE Bug 982575 for CVE-2016-2177",
"url": "https://bugzilla.suse.com/982575"
},
{
"category": "external",
"summary": "SUSE Bug 999075 for CVE-2016-2177",
"url": "https://bugzilla.suse.com/999075"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2177",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2177"
},
{
"cve": "CVE-2016-2178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2178"
}
],
"notes": [
{
"category": "general",
"text": "The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2178",
"url": "https://www.suse.com/security/cve/CVE-2016-2178"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 983249 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/983249"
},
{
"category": "external",
"summary": "SUSE Bug 983519 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/983519"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2178"
},
{
"cve": "CVE-2016-2179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2179"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service (memory consumption) by maintaining many crafted DTLS sessions simultaneously, related to d1_lib.c, statem_dtls.c, statem_lib.c, and statem_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2179",
"url": "https://www.suse.com/security/cve/CVE-2016-2179"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2179",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2179",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2179",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2179"
},
{
"cve": "CVE-2016-2180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2180"
}
],
"notes": [
{
"category": "general",
"text": "The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the \"openssl ts\" command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2180",
"url": "https://www.suse.com/security/cve/CVE-2016-2180"
},
{
"category": "external",
"summary": "SUSE Bug 1003811 for CVE-2016-2180",
"url": "https://bugzilla.suse.com/1003811"
},
{
"category": "external",
"summary": "SUSE Bug 990419 for CVE-2016-2180",
"url": "https://bugzilla.suse.com/990419"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2180",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2180"
},
{
"cve": "CVE-2016-2181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2181"
}
],
"notes": [
{
"category": "general",
"text": "The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service (false-positive packet drops) via spoofed DTLS records, related to rec_layer_d1.c and ssl3_record.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2181",
"url": "https://www.suse.com/security/cve/CVE-2016-2181"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 994749 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/994749"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2181"
},
{
"cve": "CVE-2016-2182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2182"
}
],
"notes": [
{
"category": "general",
"text": "The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2182",
"url": "https://www.suse.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 993819 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/993819"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995959 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/995959"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2182"
},
{
"cve": "CVE-2016-2183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2183"
}
],
"notes": [
{
"category": "general",
"text": "The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a \"Sweet32\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2183",
"url": "https://www.suse.com/security/cve/CVE-2016-2183"
},
{
"category": "external",
"summary": "SUSE Bug 1001912 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1001912"
},
{
"category": "external",
"summary": "SUSE Bug 1024218 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1024218"
},
{
"category": "external",
"summary": "SUSE Bug 1027038 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1027038"
},
{
"category": "external",
"summary": "SUSE Bug 1034689 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1034689"
},
{
"category": "external",
"summary": "SUSE Bug 1056614 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1056614"
},
{
"category": "external",
"summary": "SUSE Bug 1171693 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1171693"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995359 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/995359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2183"
},
{
"cve": "CVE-2016-6302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6302"
}
],
"notes": [
{
"category": "general",
"text": "The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6302",
"url": "https://www.suse.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995324 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/995324"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-6302"
},
{
"cve": "CVE-2016-6303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6303"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the MDC2_Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6303",
"url": "https://www.suse.com/security/cve/CVE-2016-6303"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995377 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/995377"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-6303"
},
{
"cve": "CVE-2016-6304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6304"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6304",
"url": "https://www.suse.com/security/cve/CVE-2016-6304"
},
{
"category": "external",
"summary": "SUSE Bug 1001706 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1001706"
},
{
"category": "external",
"summary": "SUSE Bug 1003811 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1003811"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 1005579 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1005579"
},
{
"category": "external",
"summary": "SUSE Bug 1021375 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1021375"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/999665"
},
{
"category": "external",
"summary": "SUSE Bug 999666 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/999666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-6304"
},
{
"cve": "CVE-2016-6306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6306"
}
],
"notes": [
{
"category": "general",
"text": "The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6306",
"url": "https://www.suse.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6306",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6306",
"url": "https://bugzilla.suse.com/999665"
},
{
"category": "external",
"summary": "SUSE Bug 999668 for CVE-2016-6306",
"url": "https://bugzilla.suse.com/999668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-6306"
},
{
"cve": "CVE-2016-7052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7052"
}
],
"notes": [
{
"category": "general",
"text": "crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7052",
"url": "https://www.suse.com/security/cve/CVE-2016-7052"
},
{
"category": "external",
"summary": "SUSE Bug 1001148 for CVE-2016-7052",
"url": "https://bugzilla.suse.com/1001148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-7052"
},
{
"cve": "CVE-2016-7055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7055"
}
],
"notes": [
{
"category": "general",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7055",
"url": "https://www.suse.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "SUSE Bug 1009528 for CVE-2016-7055",
"url": "https://bugzilla.suse.com/1009528"
},
{
"category": "external",
"summary": "SUSE Bug 1021641 for CVE-2016-7055",
"url": "https://bugzilla.suse.com/1021641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-7055"
},
{
"cve": "CVE-2016-7056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7056"
}
],
"notes": [
{
"category": "general",
"text": "A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7056",
"url": "https://www.suse.com/security/cve/CVE-2016-7056"
},
{
"category": "external",
"summary": "SUSE Bug 1005878 for CVE-2016-7056",
"url": "https://bugzilla.suse.com/1005878"
},
{
"category": "external",
"summary": "SUSE Bug 1019334 for CVE-2016-7056",
"url": "https://bugzilla.suse.com/1019334"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2016-7056",
"url": "https://bugzilla.suse.com/1148697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-7056"
},
{
"cve": "CVE-2017-3731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-3731"
}
],
"notes": [
{
"category": "general",
"text": "If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resulting in a crash. For OpenSSL 1.1.0, the crash can be triggered when using CHACHA20/POLY1305; users should upgrade to 1.1.0d. For Openssl 1.0.2, the crash can be triggered when using RC4-MD5; users who have not disabled that algorithm should update to 1.0.2k.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-3731",
"url": "https://www.suse.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "SUSE Bug 1021641 for CVE-2017-3731",
"url": "https://bugzilla.suse.com/1021641"
},
{
"category": "external",
"summary": "SUSE Bug 1022085 for CVE-2017-3731",
"url": "https://bugzilla.suse.com/1022085"
},
{
"category": "external",
"summary": "SUSE Bug 1064118 for CVE-2017-3731",
"url": "https://bugzilla.suse.com/1064118"
},
{
"category": "external",
"summary": "SUSE Bug 1064119 for CVE-2017-3731",
"url": "https://bugzilla.suse.com/1064119"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-3731"
},
{
"cve": "CVE-2017-3732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-3732"
}
],
"notes": [
{
"category": "general",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-3732",
"url": "https://www.suse.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "SUSE Bug 1021641 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1021641"
},
{
"category": "external",
"summary": "SUSE Bug 1022086 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1022086"
},
{
"category": "external",
"summary": "SUSE Bug 1049418 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1049418"
},
{
"category": "external",
"summary": "SUSE Bug 1049421 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1049421"
},
{
"category": "external",
"summary": "SUSE Bug 1049422 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1049422"
},
{
"category": "external",
"summary": "SUSE Bug 1066242 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1066242"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2017-3732",
"url": "https://bugzilla.suse.com/957814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2017-3732"
},
{
"cve": "CVE-2017-3735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-3735"
}
],
"notes": [
{
"category": "general",
"text": "While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-3735",
"url": "https://www.suse.com/security/cve/CVE-2017-3735"
},
{
"category": "external",
"summary": "SUSE Bug 1056058 for CVE-2017-3735",
"url": "https://bugzilla.suse.com/1056058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-3735"
},
{
"cve": "CVE-2017-3736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-3736"
}
],
"notes": [
{
"category": "general",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-3736",
"url": "https://www.suse.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "SUSE Bug 1066242 for CVE-2017-3736",
"url": "https://bugzilla.suse.com/1066242"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2017-3736",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 1076369 for CVE-2017-3736",
"url": "https://bugzilla.suse.com/1076369"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2017-3736",
"url": "https://bugzilla.suse.com/957814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-3736"
},
{
"cve": "CVE-2017-3738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-3738"
}
],
"notes": [
{
"category": "general",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-3738",
"url": "https://www.suse.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2017-3738",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 1097757 for CVE-2017-3738",
"url": "https://bugzilla.suse.com/1097757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2017-3738"
},
{
"cve": "CVE-2018-0732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-0732"
}
],
"notes": [
{
"category": "general",
"text": "During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2-1.0.2o).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-0732",
"url": "https://www.suse.com/security/cve/CVE-2018-0732"
},
{
"category": "external",
"summary": "SUSE Bug 1077628 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1077628"
},
{
"category": "external",
"summary": "SUSE Bug 1097158 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1097158"
},
{
"category": "external",
"summary": "SUSE Bug 1099502 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1099502"
},
{
"category": "external",
"summary": "SUSE Bug 1106692 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1106692"
},
{
"category": "external",
"summary": "SUSE Bug 1108542 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1108542"
},
{
"category": "external",
"summary": "SUSE Bug 1110163 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1110163"
},
{
"category": "external",
"summary": "SUSE Bug 1112097 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1112097"
},
{
"category": "external",
"summary": "SUSE Bug 1122198 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1122198"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2018-0732",
"url": "https://bugzilla.suse.com/1148697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-0732"
},
{
"cve": "CVE-2018-0734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-0734"
}
],
"notes": [
{
"category": "general",
"text": "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-0734",
"url": "https://www.suse.com/security/cve/CVE-2018-0734"
},
{
"category": "external",
"summary": "SUSE Bug 1113534 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1113534"
},
{
"category": "external",
"summary": "SUSE Bug 1113652 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1113652"
},
{
"category": "external",
"summary": "SUSE Bug 1113742 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1113742"
},
{
"category": "external",
"summary": "SUSE Bug 1122198 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1122198"
},
{
"category": "external",
"summary": "SUSE Bug 1122212 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1122212"
},
{
"category": "external",
"summary": "SUSE Bug 1126909 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1126909"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2018-0734",
"url": "https://bugzilla.suse.com/1148697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-0734"
},
{
"cve": "CVE-2018-0735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-0735"
}
],
"notes": [
{
"category": "general",
"text": "The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.1.1a (Affected 1.1.1).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-0735",
"url": "https://www.suse.com/security/cve/CVE-2018-0735"
},
{
"category": "external",
"summary": "SUSE Bug 1113534 for CVE-2018-0735",
"url": "https://bugzilla.suse.com/1113534"
},
{
"category": "external",
"summary": "SUSE Bug 1113651 for CVE-2018-0735",
"url": "https://bugzilla.suse.com/1113651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-0735"
},
{
"cve": "CVE-2018-0737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-0737"
}
],
"notes": [
{
"category": "general",
"text": "The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-0737",
"url": "https://www.suse.com/security/cve/CVE-2018-0737"
},
{
"category": "external",
"summary": "SUSE Bug 1089039 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1089039"
},
{
"category": "external",
"summary": "SUSE Bug 1089041 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1089041"
},
{
"category": "external",
"summary": "SUSE Bug 1089044 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1089044"
},
{
"category": "external",
"summary": "SUSE Bug 1089045 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1089045"
},
{
"category": "external",
"summary": "SUSE Bug 1108542 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1108542"
},
{
"category": "external",
"summary": "SUSE Bug 1123780 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1123780"
},
{
"category": "external",
"summary": "SUSE Bug 1126909 for CVE-2018-0737",
"url": "https://bugzilla.suse.com/1126909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-0737"
},
{
"cve": "CVE-2018-0739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-0739"
}
],
"notes": [
{
"category": "general",
"text": "Constructed ASN.1 types with a recursive definition (such as can be found in PKCS7) could eventually exceed the stack given malicious input with excessive recursion. This could result in a Denial Of Service attack. There are no such structures used within SSL/TLS that come from untrusted sources so this is considered safe. Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g). Fixed in OpenSSL 1.0.2o (Affected 1.0.2b-1.0.2n).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-0739",
"url": "https://www.suse.com/security/cve/CVE-2018-0739"
},
{
"category": "external",
"summary": "SUSE Bug 1087102 for CVE-2018-0739",
"url": "https://bugzilla.suse.com/1087102"
},
{
"category": "external",
"summary": "SUSE Bug 1089997 for CVE-2018-0739",
"url": "https://bugzilla.suse.com/1089997"
},
{
"category": "external",
"summary": "SUSE Bug 1094291 for CVE-2018-0739",
"url": "https://bugzilla.suse.com/1094291"
},
{
"category": "external",
"summary": "SUSE Bug 1108542 for CVE-2018-0739",
"url": "https://bugzilla.suse.com/1108542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-0739"
},
{
"cve": "CVE-2019-1543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-1543"
}
],
"notes": [
{
"category": "general",
"text": "ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value (IV) should be 96 bits (12 bytes). OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also incorrectly allows a nonce to be set of up to 16 bytes. In this case only the last 12 bytes are significant and any additional leading bytes are ignored. It is a requirement of using this cipher that nonce values are unique. Messages encrypted using a reused nonce value are susceptible to serious confidentiality and integrity attacks. If an application changes the default nonce length to be longer than 12 bytes and then makes a change to the leading bytes of the nonce expecting the new value to be a new unique nonce then such an application could inadvertently encrypt messages with a reused nonce. Additionally the ignored bytes in a long nonce are not covered by the integrity guarantee of this cipher. Any application that relies on the integrity of these ignored leading bytes of a long nonce may be further affected. Any OpenSSL internal use of this cipher, including in SSL/TLS, is safe because no such use sets such a long nonce value. However user applications that use this cipher directly and set a non-default nonce length to be longer than 12 bytes may be vulnerable. OpenSSL versions 1.1.1 and 1.1.0 are affected by this issue. Due to the limited scope of affected deployments this has been assessed as low severity and therefore we are not creating new releases at this time. Fixed in OpenSSL 1.1.1c (Affected 1.1.1-1.1.1b). Fixed in OpenSSL 1.1.0k (Affected 1.1.0-1.1.0j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-1543",
"url": "https://www.suse.com/security/cve/CVE-2019-1543"
},
{
"category": "external",
"summary": "SUSE Bug 1128189 for CVE-2019-1543",
"url": "https://bugzilla.suse.com/1128189"
},
{
"category": "external",
"summary": "SUSE Bug 1141801 for CVE-2019-1543",
"url": "https://bugzilla.suse.com/1141801"
},
{
"category": "external",
"summary": "SUSE Bug 1154162 for CVE-2019-1543",
"url": "https://bugzilla.suse.com/1154162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2019-1543"
},
{
"cve": "CVE-2019-1547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-1547"
}
],
"notes": [
{
"category": "general",
"text": "Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-1547",
"url": "https://www.suse.com/security/cve/CVE-2019-1547"
},
{
"category": "external",
"summary": "SUSE Bug 1150003 for CVE-2019-1547",
"url": "https://bugzilla.suse.com/1150003"
},
{
"category": "external",
"summary": "SUSE Bug 1154162 for CVE-2019-1547",
"url": "https://bugzilla.suse.com/1154162"
},
{
"category": "external",
"summary": "SUSE Bug 1154166 for CVE-2019-1547",
"url": "https://bugzilla.suse.com/1154166"
},
{
"category": "external",
"summary": "SUSE Bug 1156430 for CVE-2019-1547",
"url": "https://bugzilla.suse.com/1156430"
},
{
"category": "external",
"summary": "SUSE Bug 1161085 for CVE-2019-1547",
"url": "https://bugzilla.suse.com/1161085"
},
{
"category": "external",
"summary": "SUSE Bug 1205621 for CVE-2019-1547",
"url": "https://bugzilla.suse.com/1205621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-1547"
},
{
"cve": "CVE-2019-1549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-1549"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG state. However this protection was not being used in the default case. A partial mitigation for this issue is that the output from a high precision timer is mixed into the RNG state so the likelihood of a parent and child process sharing state is significantly reduced. If an application already calls OPENSSL_init_crypto() explicitly using OPENSSL_INIT_ATFORK then this problem does not occur at all. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-1549",
"url": "https://www.suse.com/security/cve/CVE-2019-1549"
},
{
"category": "external",
"summary": "SUSE Bug 1150247 for CVE-2019-1549",
"url": "https://bugzilla.suse.com/1150247"
},
{
"category": "external",
"summary": "SUSE Bug 1154162 for CVE-2019-1549",
"url": "https://bugzilla.suse.com/1154162"
},
{
"category": "external",
"summary": "SUSE Bug 1205621 for CVE-2019-1549",
"url": "https://bugzilla.suse.com/1205621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-1549"
},
{
"cve": "CVE-2019-1551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-1551"
}
],
"notes": [
{
"category": "general",
"text": "There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway. Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME. Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d). Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-1551",
"url": "https://www.suse.com/security/cve/CVE-2019-1551"
},
{
"category": "external",
"summary": "SUSE Bug 1158809 for CVE-2019-1551",
"url": "https://bugzilla.suse.com/1158809"
},
{
"category": "external",
"summary": "SUSE Bug 1205621 for CVE-2019-1551",
"url": "https://bugzilla.suse.com/1205621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-1551"
},
{
"cve": "CVE-2019-1563",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-1563"
}
],
"notes": [
{
"category": "general",
"text": "In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted with the public RSA key, using a Bleichenbacher padding oracle attack. Applications are not affected if they use a certificate together with the private RSA key to the CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info to decrypt. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-1563",
"url": "https://www.suse.com/security/cve/CVE-2019-1563"
},
{
"category": "external",
"summary": "SUSE Bug 1150250 for CVE-2019-1563",
"url": "https://bugzilla.suse.com/1150250"
},
{
"category": "external",
"summary": "SUSE Bug 1154162 for CVE-2019-1563",
"url": "https://bugzilla.suse.com/1154162"
},
{
"category": "external",
"summary": "SUSE Bug 1156430 for CVE-2019-1563",
"url": "https://bugzilla.suse.com/1156430"
},
{
"category": "external",
"summary": "SUSE Bug 1205621 for CVE-2019-1563",
"url": "https://bugzilla.suse.com/1205621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-1563"
},
{
"cve": "CVE-2020-1967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-1967"
}
],
"notes": [
{
"category": "general",
"text": "Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the \"signature_algorithms_cert\" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL versions prior to 1.1.1d. Fixed in OpenSSL 1.1.1g (Affected 1.1.1d-1.1.1f).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-1967",
"url": "https://www.suse.com/security/cve/CVE-2020-1967"
},
{
"category": "external",
"summary": "SUSE Bug 1169407 for CVE-2020-1967",
"url": "https://bugzilla.suse.com/1169407"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-1967"
},
{
"cve": "CVE-2020-1971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-1971"
}
],
"notes": [
{
"category": "general",
"text": "The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This function behaves incorrectly when both GENERAL_NAMEs contain an EDIPARTYNAME. A NULL pointer dereference and a crash may occur leading to a possible denial of service attack. OpenSSL itself uses the GENERAL_NAME_cmp function for two purposes: 1) Comparing CRL distribution point names between an available CRL and a CRL distribution point embedded in an X509 certificate 2) When verifying that a timestamp response token signer matches the timestamp authority name (exposed via the API functions TS_RESP_verify_response and TS_RESP_verify_token) If an attacker can control both items being compared then that attacker could trigger a crash. For example if the attacker can trick a client or server into checking a malicious certificate against a malicious CRL then this may occur. Note that some applications automatically download CRLs based on a URL embedded in a certificate. This checking happens prior to the signatures on the certificate and CRL being verified. OpenSSL\u0027s s_server, s_client and verify tools have support for the \"-crl_download\" option which implements automatic CRL downloading and this attack has been demonstrated to work against those tools. Note that an unrelated bug means that affected versions of OpenSSL cannot parse or construct correct encodings of EDIPARTYNAME. However it is possible to construct a malformed EDIPARTYNAME that OpenSSL\u0027s parser will accept and hence trigger this attack. All OpenSSL 1.1.1 and 1.0.2 versions are affected by this issue. Other OpenSSL releases are out of support and have not been checked. Fixed in OpenSSL 1.1.1i (Affected 1.1.1-1.1.1h). Fixed in OpenSSL 1.0.2x (Affected 1.0.2-1.0.2w).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-1971",
"url": "https://www.suse.com/security/cve/CVE-2020-1971"
},
{
"category": "external",
"summary": "SUSE Bug 1179491 for CVE-2020-1971",
"url": "https://bugzilla.suse.com/1179491"
},
{
"category": "external",
"summary": "SUSE Bug 1196179 for CVE-2020-1971",
"url": "https://bugzilla.suse.com/1196179"
},
{
"category": "external",
"summary": "SUSE Bug 1199303 for CVE-2020-1971",
"url": "https://bugzilla.suse.com/1199303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-1971"
},
{
"cve": "CVE-2021-23840",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23840"
}
],
"notes": [
{
"category": "general",
"text": "Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23840",
"url": "https://www.suse.com/security/cve/CVE-2021-23840"
},
{
"category": "external",
"summary": "SUSE Bug 1182333 for CVE-2021-23840",
"url": "https://bugzilla.suse.com/1182333"
},
{
"category": "external",
"summary": "SUSE Bug 1187743 for CVE-2021-23840",
"url": "https://bugzilla.suse.com/1187743"
},
{
"category": "external",
"summary": "SUSE Bug 1214334 for CVE-2021-23840",
"url": "https://bugzilla.suse.com/1214334"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-23840",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-23840"
},
{
"cve": "CVE-2021-23841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23841"
}
],
"notes": [
{
"category": "general",
"text": "The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23841",
"url": "https://www.suse.com/security/cve/CVE-2021-23841"
},
{
"category": "external",
"summary": "SUSE Bug 1182331 for CVE-2021-23841",
"url": "https://bugzilla.suse.com/1182331"
},
{
"category": "external",
"summary": "SUSE Bug 1187743 for CVE-2021-23841",
"url": "https://bugzilla.suse.com/1187743"
},
{
"category": "external",
"summary": "SUSE Bug 1214334 for CVE-2021-23841",
"url": "https://bugzilla.suse.com/1214334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-23841"
},
{
"cve": "CVE-2021-3449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3449"
}
],
"notes": [
{
"category": "general",
"text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3449",
"url": "https://www.suse.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "SUSE Bug 1183852 for CVE-2021-3449",
"url": "https://bugzilla.suse.com/1183852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-3449"
},
{
"cve": "CVE-2021-3450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3450"
}
],
"notes": [
{
"category": "general",
"text": "The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a \"purpose\" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named \"purpose\" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3450",
"url": "https://www.suse.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "SUSE Bug 1183851 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "external",
"summary": "SUSE Bug 1188549 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1188549"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-3450"
},
{
"cve": "CVE-2021-3711",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3711"
}
],
"notes": [
{
"category": "general",
"text": "In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the \"out\" parameter can be NULL and, on exit, the \"outlen\" parameter is populated with the buffer size required to hold the decrypted plaintext. The application can then allocate a sufficiently sized buffer and call EVP_PKEY_decrypt() again, but this time passing a non-NULL value for the \"out\" parameter. A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when EVP_PKEY_decrypt() is called by the application a second time with a buffer that is too small. A malicious attacker who is able present SM2 content for decryption to an application could cause attacker chosen data to overflow the buffer by up to a maximum of 62 bytes altering the contents of other data held after the buffer, possibly changing application behaviour or causing the application to crash. The location of the buffer is application dependent but is typically heap allocated. Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3711",
"url": "https://www.suse.com/security/cve/CVE-2021-3711"
},
{
"category": "external",
"summary": "SUSE Bug 1189520 for CVE-2021-3711",
"url": "https://bugzilla.suse.com/1189520"
},
{
"category": "external",
"summary": "SUSE Bug 1190129 for CVE-2021-3711",
"url": "https://bugzilla.suse.com/1190129"
},
{
"category": "external",
"summary": "SUSE Bug 1192100 for CVE-2021-3711",
"url": "https://bugzilla.suse.com/1192100"
},
{
"category": "external",
"summary": "SUSE Bug 1205663 for CVE-2021-3711",
"url": "https://bugzilla.suse.com/1205663"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3711",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2021-3711"
},
{
"cve": "CVE-2021-3712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3712"
}
],
"notes": [
{
"category": "general",
"text": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3712",
"url": "https://www.suse.com/security/cve/CVE-2021-3712"
},
{
"category": "external",
"summary": "SUSE Bug 1189521 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1189521"
},
{
"category": "external",
"summary": "SUSE Bug 1190129 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1190129"
},
{
"category": "external",
"summary": "SUSE Bug 1191640 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1191640"
},
{
"category": "external",
"summary": "SUSE Bug 1192100 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1192100"
},
{
"category": "external",
"summary": "SUSE Bug 1192787 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1192787"
},
{
"category": "external",
"summary": "SUSE Bug 1194948 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1194948"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3712",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl-1_1-devel-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-32bit-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:libopenssl1_1-hmac-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-1.1.1l-1.2.x86_64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.aarch64",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.ppc64le",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.s390x",
"openSUSE Tumbleweed:openssl-1_1-doc-1.1.1l-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-3712"
}
]
}
OPENSUSE-SU-2024:10271-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libopenssl-devel-1.0.2j-2.2 on GA media
Notes
Title of the patch
libopenssl-devel-1.0.2j-2.2 on GA media
Description of the patch
These are all security issues fixed in the libopenssl-devel-1.0.2j-2.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10271
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libopenssl-devel-1.0.2j-2.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libopenssl-devel-1.0.2j-2.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10271",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10271-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-7250 page",
"url": "https://www.suse.com/security/cve/CVE-2006-7250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5077 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0590 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0591 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0789 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1377 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1377/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1378 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1379 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1386 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1386/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1387 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1387/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0740 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0742 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1633 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-2939 page",
"url": "https://www.suse.com/security/cve/CVE-2010-2939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3864 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-5298 page",
"url": "https://www.suse.com/security/cve/CVE-2010-5298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-0014 page",
"url": "https://www.suse.com/security/cve/CVE-2011-0014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3207 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3210 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4108 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4576 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4577 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4619 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0027 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0050 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0884 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-1165 page",
"url": "https://www.suse.com/security/cve/CVE-2012-1165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2110 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2686 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-4929 page",
"url": "https://www.suse.com/security/cve/CVE-2012-4929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0166 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0169 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4353 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6449 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6450 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6450/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0076 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0160 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0195 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0198 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0221 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0224 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3470 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3505 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3513 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3567 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3568 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3569 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0204 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0293 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1791 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1793 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1794 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3193 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3194 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3195 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3196 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3197 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0701 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0702 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0705 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0797 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0798 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0800 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2105 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2106 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2107 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2109 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2109/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2176 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2177 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2178 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2179 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2180 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2181 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2182 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2183 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6302 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6303 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6304 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6306 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7052 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7052/"
}
],
"title": "libopenssl-devel-1.0.2j-2.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10271-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-devel-1.0.2j-2.2.aarch64",
"product": {
"name": "libopenssl-devel-1.0.2j-2.2.aarch64",
"product_id": "libopenssl-devel-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"product": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"product_id": "libopenssl-devel-32bit-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.2j-2.2.aarch64",
"product": {
"name": "libopenssl1_0_0-1.0.2j-2.2.aarch64",
"product_id": "libopenssl1_0_0-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"product_id": "libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"product": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"product_id": "libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"product": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"product_id": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "openssl-1.0.2j-2.2.aarch64",
"product": {
"name": "openssl-1.0.2j-2.2.aarch64",
"product_id": "openssl-1.0.2j-2.2.aarch64"
}
},
{
"category": "product_version",
"name": "openssl-doc-1.0.2j-2.2.aarch64",
"product": {
"name": "openssl-doc-1.0.2j-2.2.aarch64",
"product_id": "openssl-doc-1.0.2j-2.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-devel-1.0.2j-2.2.ppc64le",
"product": {
"name": "libopenssl-devel-1.0.2j-2.2.ppc64le",
"product_id": "libopenssl-devel-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"product": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"product_id": "libopenssl-devel-32bit-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"product": {
"name": "libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"product_id": "libopenssl1_0_0-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"product_id": "libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"product": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"product_id": "libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"product": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"product_id": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "openssl-1.0.2j-2.2.ppc64le",
"product": {
"name": "openssl-1.0.2j-2.2.ppc64le",
"product_id": "openssl-1.0.2j-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "openssl-doc-1.0.2j-2.2.ppc64le",
"product": {
"name": "openssl-doc-1.0.2j-2.2.ppc64le",
"product_id": "openssl-doc-1.0.2j-2.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-devel-1.0.2j-2.2.s390x",
"product": {
"name": "libopenssl-devel-1.0.2j-2.2.s390x",
"product_id": "libopenssl-devel-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"product": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"product_id": "libopenssl-devel-32bit-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.2j-2.2.s390x",
"product": {
"name": "libopenssl1_0_0-1.0.2j-2.2.s390x",
"product_id": "libopenssl1_0_0-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"product_id": "libopenssl1_0_0-32bit-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"product": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"product_id": "libopenssl1_0_0-hmac-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"product": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"product_id": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "openssl-1.0.2j-2.2.s390x",
"product": {
"name": "openssl-1.0.2j-2.2.s390x",
"product_id": "openssl-1.0.2j-2.2.s390x"
}
},
{
"category": "product_version",
"name": "openssl-doc-1.0.2j-2.2.s390x",
"product": {
"name": "openssl-doc-1.0.2j-2.2.s390x",
"product_id": "openssl-doc-1.0.2j-2.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-devel-1.0.2j-2.2.x86_64",
"product": {
"name": "libopenssl-devel-1.0.2j-2.2.x86_64",
"product_id": "libopenssl-devel-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"product": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"product_id": "libopenssl-devel-32bit-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-1.0.2j-2.2.x86_64",
"product": {
"name": "libopenssl1_0_0-1.0.2j-2.2.x86_64",
"product_id": "libopenssl1_0_0-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"product": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"product_id": "libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"product": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"product_id": "libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"product": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"product_id": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "openssl-1.0.2j-2.2.x86_64",
"product": {
"name": "openssl-1.0.2j-2.2.x86_64",
"product_id": "openssl-1.0.2j-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "openssl-doc-1.0.2j-2.2.x86_64",
"product": {
"name": "openssl-doc-1.0.2j-2.2.x86_64",
"product_id": "openssl-doc-1.0.2j-2.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64"
},
"product_reference": "libopenssl-devel-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le"
},
"product_reference": "libopenssl-devel-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x"
},
"product_reference": "libopenssl-devel-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64"
},
"product_reference": "libopenssl-devel-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64"
},
"product_reference": "libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le"
},
"product_reference": "libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x"
},
"product_reference": "libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-devel-32bit-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64"
},
"product_reference": "libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64"
},
"product_reference": "libopenssl1_0_0-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le"
},
"product_reference": "libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x"
},
"product_reference": "libopenssl1_0_0-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64"
},
"product_reference": "libopenssl1_0_0-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64"
},
"product_reference": "libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64"
},
"product_reference": "libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le"
},
"product_reference": "libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x"
},
"product_reference": "libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64"
},
"product_reference": "libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64"
},
"product_reference": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le"
},
"product_reference": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x"
},
"product_reference": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64"
},
"product_reference": "libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64"
},
"product_reference": "openssl-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le"
},
"product_reference": "openssl-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x"
},
"product_reference": "openssl-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64"
},
"product_reference": "openssl-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-doc-1.0.2j-2.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64"
},
"product_reference": "openssl-doc-1.0.2j-2.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-doc-1.0.2j-2.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le"
},
"product_reference": "openssl-doc-1.0.2j-2.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-doc-1.0.2j-2.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x"
},
"product_reference": "openssl-doc-1.0.2j-2.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-doc-1.0.2j-2.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
},
"product_reference": "openssl-doc-1.0.2j-2.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2006-7250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-7250"
}
],
"notes": [
{
"category": "general",
"text": "The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-7250",
"url": "https://www.suse.com/security/cve/CVE-2006-7250"
},
{
"category": "external",
"summary": "SUSE Bug 748738 for CVE-2006-7250",
"url": "https://bugzilla.suse.com/748738"
},
{
"category": "external",
"summary": "SUSE Bug 883307 for CVE-2006-7250",
"url": "https://bugzilla.suse.com/883307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2006-7250"
},
{
"cve": "CVE-2008-5077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5077"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5077",
"url": "https://www.suse.com/security/cve/CVE-2008-5077"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 465675 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/465675"
},
{
"category": "external",
"summary": "SUSE Bug 465676 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/465676"
},
{
"category": "external",
"summary": "SUSE Bug 468866 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/468866"
},
{
"category": "external",
"summary": "SUSE Bug 470968 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/470968"
},
{
"category": "external",
"summary": "SUSE Bug 475108 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/475108"
},
{
"category": "external",
"summary": "SUSE Bug 552497 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/552497"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 708266 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/708266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-5077"
},
{
"cve": "CVE-2009-0590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0590"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0590",
"url": "https://www.suse.com/security/cve/CVE-2009-0590"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-0590"
},
{
"cve": "CVE-2009-0591",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0591"
}
],
"notes": [
{
"category": "general",
"text": "The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote attackers to repudiate a signature that originally appeared to be valid but was actually invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0591",
"url": "https://www.suse.com/security/cve/CVE-2009-0591"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0591",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0591",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2009-0591"
},
{
"cve": "CVE-2009-0789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0789"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0789",
"url": "https://www.suse.com/security/cve/CVE-2009-0789"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-0789"
},
{
"cve": "CVE-2009-1377",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1377"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of \"future epoch\" DTLS records that are buffered in a queue, aka \"DTLS record buffer limitation bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1377",
"url": "https://www.suse.com/security/cve/CVE-2009-1377"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1377"
},
{
"cve": "CVE-2009-1378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1378"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka \"DTLS fragment handling memory leak.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1378",
"url": "https://www.suse.com/security/cve/CVE-2009-1378"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1378"
},
{
"cve": "CVE-2009-1379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1379"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service (openssl s_client crash) and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server that uses a crafted server certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1379",
"url": "https://www.suse.com/security/cve/CVE-2009-1379"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1379"
},
{
"cve": "CVE-2009-1386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1386"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1386",
"url": "https://www.suse.com/security/cve/CVE-2009-1386"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 509031 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/509031"
},
{
"category": "external",
"summary": "SUSE Bug 515659 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/515659"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1386"
},
{
"cve": "CVE-2009-1387",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1387"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a \"fragment bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1387",
"url": "https://www.suse.com/security/cve/CVE-2009-1387"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 509031 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/509031"
},
{
"category": "external",
"summary": "SUSE Bug 515659 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/515659"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1387"
},
{
"cve": "CVE-2010-0740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0740"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0740",
"url": "https://www.suse.com/security/cve/CVE-2010-0740"
},
{
"category": "external",
"summary": "SUSE Bug 590833 for CVE-2010-0740",
"url": "https://bugzilla.suse.com/590833"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-0740",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0740"
},
{
"cve": "CVE-2010-0742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0742"
}
],
"notes": [
{
"category": "general",
"text": "The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, and possibly execute arbitrary code, via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0742",
"url": "https://www.suse.com/security/cve/CVE-2010-0742"
},
{
"category": "external",
"summary": "SUSE Bug 610642 for CVE-2010-0742",
"url": "https://bugzilla.suse.com/610642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-0742"
},
{
"cve": "CVE-2010-1633",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1633"
}
],
"notes": [
{
"category": "general",
"text": "RSA verification recovery in the EVP_PKEY_verify_recover function in OpenSSL 1.x before 1.0.0a, as used by pkeyutl and possibly other applications, returns uninitialized memory upon failure, which might allow context-dependent attackers to bypass intended key requirements or obtain sensitive information via unspecified vectors. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1633",
"url": "https://www.suse.com/security/cve/CVE-2010-1633"
},
{
"category": "external",
"summary": "SUSE Bug 610642 for CVE-2010-1633",
"url": "https://bugzilla.suse.com/610642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1633"
},
{
"cve": "CVE-2010-2939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-2939"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-2939",
"url": "https://www.suse.com/security/cve/CVE-2010-2939"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2010-2939",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-2939",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-2939"
},
{
"cve": "CVE-2010-3864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3864"
}
],
"notes": [
{
"category": "general",
"text": "Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3864",
"url": "https://www.suse.com/security/cve/CVE-2010-3864"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-3864",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 651003 for CVE-2010-3864",
"url": "https://bugzilla.suse.com/651003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-3864"
},
{
"cve": "CVE-2010-5298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-5298"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-5298",
"url": "https://www.suse.com/security/cve/CVE-2010-5298"
},
{
"category": "external",
"summary": "SUSE Bug 873351 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2010-5298"
},
{
"cve": "CVE-2011-0014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-0014"
}
],
"notes": [
{
"category": "general",
"text": "ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka \"OCSP stapling vulnerability.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-0014",
"url": "https://www.suse.com/security/cve/CVE-2011-0014"
},
{
"category": "external",
"summary": "SUSE Bug 670526 for CVE-2011-0014",
"url": "https://bugzilla.suse.com/670526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-0014"
},
{
"cve": "CVE-2011-3207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3207"
}
],
"notes": [
{
"category": "general",
"text": "crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3207",
"url": "https://www.suse.com/security/cve/CVE-2011-3207"
},
{
"category": "external",
"summary": "SUSE Bug 716143 for CVE-2011-3207",
"url": "https://bugzilla.suse.com/716143"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-3207",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3207"
},
{
"cve": "CVE-2011-3210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3210"
}
],
"notes": [
{
"category": "general",
"text": "The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service (daemon crash) via out-of-order messages that violate the TLS protocol.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3210",
"url": "https://www.suse.com/security/cve/CVE-2011-3210"
},
{
"category": "external",
"summary": "SUSE Bug 716144 for CVE-2011-3210",
"url": "https://bugzilla.suse.com/716144"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-3210",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3210"
},
{
"cve": "CVE-2011-4108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4108"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4108",
"url": "https://www.suse.com/security/cve/CVE-2011-4108"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 742821 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/742821"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4108"
},
{
"cve": "CVE-2011-4576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4576"
}
],
"notes": [
{
"category": "general",
"text": "The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4576",
"url": "https://www.suse.com/security/cve/CVE-2011-4576"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4576"
},
{
"cve": "CVE-2011-4577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4577"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4577",
"url": "https://www.suse.com/security/cve/CVE-2011-4577"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4577"
},
{
"cve": "CVE-2011-4619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4619"
}
],
"notes": [
{
"category": "general",
"text": "The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4619",
"url": "https://www.suse.com/security/cve/CVE-2011-4619"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 799454 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/799454"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4619"
},
{
"cve": "CVE-2012-0027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0027"
}
],
"notes": [
{
"category": "general",
"text": "The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0027",
"url": "https://www.suse.com/security/cve/CVE-2012-0027"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2012-0027",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-0027",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0027"
},
{
"cve": "CVE-2012-0050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0050"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0050",
"url": "https://www.suse.com/security/cve/CVE-2012-0050"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 742821 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/742821"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/758060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0050"
},
{
"cve": "CVE-2012-0884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0884"
}
],
"notes": [
{
"category": "general",
"text": "The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack (MMA) adaptive chosen ciphertext attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0884",
"url": "https://www.suse.com/security/cve/CVE-2012-0884"
},
{
"category": "external",
"summary": "SUSE Bug 749210 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/749210"
},
{
"category": "external",
"summary": "SUSE Bug 749735 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/749735"
},
{
"category": "external",
"summary": "SUSE Bug 751977 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/751977"
},
{
"category": "external",
"summary": "SUSE Bug 754640 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/754640"
},
{
"category": "external",
"summary": "SUSE Bug 761819 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/761819"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0884"
},
{
"cve": "CVE-2012-1165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-1165"
}
],
"notes": [
{
"category": "general",
"text": "The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-1165",
"url": "https://www.suse.com/security/cve/CVE-2012-1165"
},
{
"category": "external",
"summary": "SUSE Bug 749210 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/749210"
},
{
"category": "external",
"summary": "SUSE Bug 749213 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/749213"
},
{
"category": "external",
"summary": "SUSE Bug 751946 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/751946"
},
{
"category": "external",
"summary": "SUSE Bug 754640 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/754640"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-1165"
},
{
"cve": "CVE-2012-2110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2110"
}
],
"notes": [
{
"category": "general",
"text": "The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an X.509 certificate or an RSA public key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2110",
"url": "https://www.suse.com/security/cve/CVE-2012-2110"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2012-2110"
},
{
"cve": "CVE-2012-2686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2686"
}
],
"notes": [
{
"category": "general",
"text": "crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2686",
"url": "https://www.suse.com/security/cve/CVE-2012-2686"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2012-2686",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-2686",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2686"
},
{
"cve": "CVE-2012-4929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-4929"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a \"CRIME\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-4929",
"url": "https://www.suse.com/security/cve/CVE-2012-4929"
},
{
"category": "external",
"summary": "SUSE Bug 1011293 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/1011293"
},
{
"category": "external",
"summary": "SUSE Bug 779952 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/779952"
},
{
"category": "external",
"summary": "SUSE Bug 793420 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/793420"
},
{
"category": "external",
"summary": "SUSE Bug 803004 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/803004"
},
{
"category": "external",
"summary": "SUSE Bug 847895 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/847895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-4929"
},
{
"cve": "CVE-2013-0166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0166"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCSP servers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0166",
"url": "https://www.suse.com/security/cve/CVE-2013-0166"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 802746 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/802746"
},
{
"category": "external",
"summary": "SUSE Bug 813366 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/813366"
},
{
"category": "external",
"summary": "SUSE Bug 821818 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/821818"
},
{
"category": "external",
"summary": "SUSE Bug 833408 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/833408"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/854391"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-0166"
},
{
"cve": "CVE-2013-0169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0169"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0169",
"url": "https://www.suse.com/security/cve/CVE-2013-0169"
},
{
"category": "external",
"summary": "SUSE Bug 1070148 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1070148"
},
{
"category": "external",
"summary": "SUSE Bug 1103036 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1103036"
},
{
"category": "external",
"summary": "SUSE Bug 1103597 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1103597"
},
{
"category": "external",
"summary": "SUSE Bug 802184 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802184"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 802746 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802746"
},
{
"category": "external",
"summary": "SUSE Bug 803379 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/803379"
},
{
"category": "external",
"summary": "SUSE Bug 804654 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/804654"
},
{
"category": "external",
"summary": "SUSE Bug 809839 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/809839"
},
{
"category": "external",
"summary": "SUSE Bug 813366 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/813366"
},
{
"category": "external",
"summary": "SUSE Bug 813939 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/813939"
},
{
"category": "external",
"summary": "SUSE Bug 821818 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/821818"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977616 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/977616"
},
{
"category": "external",
"summary": "SUSE Bug 984977 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/984977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-0169"
},
{
"cve": "CVE-2013-4353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4353"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4353",
"url": "https://www.suse.com/security/cve/CVE-2013-4353"
},
{
"category": "external",
"summary": "SUSE Bug 857640 for CVE-2013-4353",
"url": "https://bugzilla.suse.com/857640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-4353"
},
{
"cve": "CVE-2013-6449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6449"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6449",
"url": "https://www.suse.com/security/cve/CVE-2013-6449"
},
{
"category": "external",
"summary": "SUSE Bug 856687 for CVE-2013-6449",
"url": "https://bugzilla.suse.com/856687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6449"
},
{
"cve": "CVE-2013-6450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6450"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6450",
"url": "https://www.suse.com/security/cve/CVE-2013-6450"
},
{
"category": "external",
"summary": "SUSE Bug 857203 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/857203"
},
{
"category": "external",
"summary": "SUSE Bug 861384 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/861384"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6450"
},
{
"cve": "CVE-2014-0076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0076"
}
],
"notes": [
{
"category": "general",
"text": "The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0076",
"url": "https://www.suse.com/security/cve/CVE-2014-0076"
},
{
"category": "external",
"summary": "SUSE Bug 869945 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/869945"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0076"
},
{
"cve": "CVE-2014-0160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0160"
}
],
"notes": [
{
"category": "general",
"text": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0160",
"url": "https://www.suse.com/security/cve/CVE-2014-0160"
},
{
"category": "external",
"summary": "SUSE Bug 872299 for CVE-2014-0160",
"url": "https://bugzilla.suse.com/872299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-0160"
},
{
"cve": "CVE-2014-0195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0195"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0195",
"url": "https://www.suse.com/security/cve/CVE-2014-0195"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0195"
},
{
"cve": "CVE-2014-0198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0198"
}
],
"notes": [
{
"category": "general",
"text": "The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0198",
"url": "https://www.suse.com/security/cve/CVE-2014-0198"
},
{
"category": "external",
"summary": "SUSE Bug 876282 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0198"
},
{
"cve": "CVE-2014-0221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0221"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0221",
"url": "https://www.suse.com/security/cve/CVE-2014-0221"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0221"
},
{
"cve": "CVE-2014-0224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0224"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0224",
"url": "https://www.suse.com/security/cve/CVE-2014-0224"
},
{
"category": "external",
"summary": "SUSE Bug 1146657 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/1146657"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 881743 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/881743"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 892403 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/892403"
},
{
"category": "external",
"summary": "SUSE Bug 901237 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/901237"
},
{
"category": "external",
"summary": "SUSE Bug 903703 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/903703"
},
{
"category": "external",
"summary": "SUSE Bug 905018 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905018"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914447 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/914447"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/915913"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/916239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-0224"
},
{
"cve": "CVE-2014-3470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3470"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3470",
"url": "https://www.suse.com/security/cve/CVE-2014-3470"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3470"
},
{
"cve": "CVE-2014-3505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3505"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3505",
"url": "https://www.suse.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890767 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3513"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3513",
"url": "https://www.suse.com/security/cve/CVE-2014-3513"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3513",
"url": "https://bugzilla.suse.com/901277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3513"
},
{
"cve": "CVE-2014-3567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3567"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3567",
"url": "https://www.suse.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "SUSE Bug 877506 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/877506"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3567"
},
{
"cve": "CVE-2014-3568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3568"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3568",
"url": "https://www.suse.com/security/cve/CVE-2014-3568"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3568"
},
{
"cve": "CVE-2014-3569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3569"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3569",
"url": "https://www.suse.com/security/cve/CVE-2014-3569"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3569"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3571"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3571",
"url": "https://www.suse.com/security/cve/CVE-2014-3571"
},
{
"category": "external",
"summary": "SUSE Bug 912294 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/927623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3571"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0204"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the \"FREAK\" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0204",
"url": "https://www.suse.com/security/cve/CVE-2015-0204"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 920482 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920482"
},
{
"category": "external",
"summary": "SUSE Bug 920484 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920484"
},
{
"category": "external",
"summary": "SUSE Bug 927591 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927591"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 936787 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/936787"
},
{
"category": "external",
"summary": "SUSE Bug 952088 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/952088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0204"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-0293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0293"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0293",
"url": "https://www.suse.com/security/cve/CVE-2015-0293"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922488 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968051 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968051"
},
{
"category": "external",
"summary": "SUSE Bug 968053 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968053"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0293"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1791"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1791",
"url": "https://www.suse.com/security/cve/CVE-2015-1791"
},
{
"category": "external",
"summary": "SUSE Bug 933911 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/986238"
},
{
"category": "external",
"summary": "SUSE Bug 989464 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/989464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1791"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-1793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1793"
}
],
"notes": [
{
"category": "general",
"text": "The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1793",
"url": "https://www.suse.com/security/cve/CVE-2015-1793"
},
{
"category": "external",
"summary": "SUSE Bug 936746 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/936746"
},
{
"category": "external",
"summary": "SUSE Bug 937637 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/937637"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1793"
},
{
"cve": "CVE-2015-1794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1794"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1794",
"url": "https://www.suse.com/security/cve/CVE-2015-1794"
},
{
"category": "external",
"summary": "SUSE Bug 957984 for CVE-2015-1794",
"url": "https://bugzilla.suse.com/957984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-1794"
},
{
"cve": "CVE-2015-3193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3193"
}
],
"notes": [
{
"category": "general",
"text": "The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3193",
"url": "https://www.suse.com/security/cve/CVE-2015-3193"
},
{
"category": "external",
"summary": "SUSE Bug 1022086 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1022086"
},
{
"category": "external",
"summary": "SUSE Bug 1066242 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1066242"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/957814"
},
{
"category": "external",
"summary": "SUSE Bug 960151 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/960151"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3193"
},
{
"cve": "CVE-2015-3194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3194"
}
],
"notes": [
{
"category": "general",
"text": "crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3194",
"url": "https://www.suse.com/security/cve/CVE-2015-3194"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/976341"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3194"
},
{
"cve": "CVE-2015-3195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3195"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3195",
"url": "https://www.suse.com/security/cve/CVE-2015-3195"
},
{
"category": "external",
"summary": "SUSE Bug 923755 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/923755"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 963977 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/963977"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3195"
},
{
"cve": "CVE-2015-3196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3196"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3196",
"url": "https://www.suse.com/security/cve/CVE-2015-3196"
},
{
"category": "external",
"summary": "SUSE Bug 957813 for CVE-2015-3196",
"url": "https://bugzilla.suse.com/957813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3196"
},
{
"cve": "CVE-2015-3197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3197"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3197",
"url": "https://www.suse.com/security/cve/CVE-2015-3197"
},
{
"category": "external",
"summary": "SUSE Bug 963410 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/963410"
},
{
"category": "external",
"summary": "SUSE Bug 963415 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/963415"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968046 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/968046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-3197"
},
{
"cve": "CVE-2016-0701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0701"
}
],
"notes": [
{
"category": "general",
"text": "The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0701",
"url": "https://www.suse.com/security/cve/CVE-2016-0701"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 1176331 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1176331"
},
{
"category": "external",
"summary": "SUSE Bug 1195379 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1195379"
},
{
"category": "external",
"summary": "SUSE Bug 963410 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/963410"
},
{
"category": "external",
"summary": "SUSE Bug 963413 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/963413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0701"
},
{
"cve": "CVE-2016-0702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0702"
}
],
"notes": [
{
"category": "general",
"text": "The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a \"CacheBleed\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0702",
"url": "https://www.suse.com/security/cve/CVE-2016-0702"
},
{
"category": "external",
"summary": "SUSE Bug 1007806 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/1007806"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968050 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968050"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0702"
},
{
"cve": "CVE-2016-0705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0705"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0705",
"url": "https://www.suse.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968047 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/968047"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/976341"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2016-0705"
},
{
"cve": "CVE-2016-0797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0797"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0797",
"url": "https://www.suse.com/security/cve/CVE-2016-0797"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968048 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/968048"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0797"
},
{
"cve": "CVE-2016-0798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0798"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0798",
"url": "https://www.suse.com/security/cve/CVE-2016-0798"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0798",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968265 for CVE-2016-0798",
"url": "https://bugzilla.suse.com/968265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0798"
},
{
"cve": "CVE-2016-0800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0800"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a \"DROWN\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0800",
"url": "https://www.suse.com/security/cve/CVE-2016-0800"
},
{
"category": "external",
"summary": "SUSE Bug 1106871 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/1106871"
},
{
"category": "external",
"summary": "SUSE Bug 961377 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/961377"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968046 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968046"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 969591 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/969591"
},
{
"category": "external",
"summary": "SUSE Bug 979060 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/979060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0800"
},
{
"cve": "CVE-2016-2105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2105"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2105",
"url": "https://www.suse.com/security/cve/CVE-2016-2105"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977614 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/977614"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 989902 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/989902"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/990369"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2105"
},
{
"cve": "CVE-2016-2106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2106"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2106",
"url": "https://www.suse.com/security/cve/CVE-2016-2106"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977615 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/977615"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 979279 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/979279"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2106"
},
{
"cve": "CVE-2016-2107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2107"
}
],
"notes": [
{
"category": "general",
"text": "The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2107",
"url": "https://www.suse.com/security/cve/CVE-2016-2107"
},
{
"category": "external",
"summary": "SUSE Bug 976942 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/976942"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977616 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/977616"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/990369"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2107"
},
{
"cve": "CVE-2016-2109",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2109"
}
],
"notes": [
{
"category": "general",
"text": "The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2109",
"url": "https://www.suse.com/security/cve/CVE-2016-2109"
},
{
"category": "external",
"summary": "SUSE Bug 1015243 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/1015243"
},
{
"category": "external",
"summary": "SUSE Bug 976942 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/976942"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2109"
},
{
"cve": "CVE-2016-2176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2176"
}
],
"notes": [
{
"category": "general",
"text": "The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2176",
"url": "https://www.suse.com/security/cve/CVE-2016-2176"
},
{
"category": "external",
"summary": "SUSE Bug 978224 for CVE-2016-2176",
"url": "https://bugzilla.suse.com/978224"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2176",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2176"
},
{
"cve": "CVE-2016-2177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2177"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2177",
"url": "https://www.suse.com/security/cve/CVE-2016-2177"
},
{
"category": "external",
"summary": "SUSE Bug 982575 for CVE-2016-2177",
"url": "https://bugzilla.suse.com/982575"
},
{
"category": "external",
"summary": "SUSE Bug 999075 for CVE-2016-2177",
"url": "https://bugzilla.suse.com/999075"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2177",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2177"
},
{
"cve": "CVE-2016-2178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2178"
}
],
"notes": [
{
"category": "general",
"text": "The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2178",
"url": "https://www.suse.com/security/cve/CVE-2016-2178"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 983249 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/983249"
},
{
"category": "external",
"summary": "SUSE Bug 983519 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/983519"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2178",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2178"
},
{
"cve": "CVE-2016-2179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2179"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service (memory consumption) by maintaining many crafted DTLS sessions simultaneously, related to d1_lib.c, statem_dtls.c, statem_lib.c, and statem_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2179",
"url": "https://www.suse.com/security/cve/CVE-2016-2179"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2179",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2179",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2179",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2179"
},
{
"cve": "CVE-2016-2180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2180"
}
],
"notes": [
{
"category": "general",
"text": "The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the \"openssl ts\" command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2180",
"url": "https://www.suse.com/security/cve/CVE-2016-2180"
},
{
"category": "external",
"summary": "SUSE Bug 1003811 for CVE-2016-2180",
"url": "https://bugzilla.suse.com/1003811"
},
{
"category": "external",
"summary": "SUSE Bug 990419 for CVE-2016-2180",
"url": "https://bugzilla.suse.com/990419"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2180",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2180"
},
{
"cve": "CVE-2016-2181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2181"
}
],
"notes": [
{
"category": "general",
"text": "The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service (false-positive packet drops) via spoofed DTLS records, related to rec_layer_d1.c and ssl3_record.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2181",
"url": "https://www.suse.com/security/cve/CVE-2016-2181"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 994749 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/994749"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2181",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2181"
},
{
"cve": "CVE-2016-2182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2182"
}
],
"notes": [
{
"category": "general",
"text": "The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2182",
"url": "https://www.suse.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 993819 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/993819"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995959 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/995959"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-2182",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2182"
},
{
"cve": "CVE-2016-2183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2183"
}
],
"notes": [
{
"category": "general",
"text": "The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a \"Sweet32\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2183",
"url": "https://www.suse.com/security/cve/CVE-2016-2183"
},
{
"category": "external",
"summary": "SUSE Bug 1001912 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1001912"
},
{
"category": "external",
"summary": "SUSE Bug 1024218 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1024218"
},
{
"category": "external",
"summary": "SUSE Bug 1027038 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1027038"
},
{
"category": "external",
"summary": "SUSE Bug 1034689 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1034689"
},
{
"category": "external",
"summary": "SUSE Bug 1056614 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1056614"
},
{
"category": "external",
"summary": "SUSE Bug 1171693 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/1171693"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995359 for CVE-2016-2183",
"url": "https://bugzilla.suse.com/995359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2183"
},
{
"cve": "CVE-2016-6302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6302"
}
],
"notes": [
{
"category": "general",
"text": "The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6302",
"url": "https://www.suse.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995324 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/995324"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6302",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-6302"
},
{
"cve": "CVE-2016-6303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6303"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the MDC2_Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6303",
"url": "https://www.suse.com/security/cve/CVE-2016-6303"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 994844 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/994844"
},
{
"category": "external",
"summary": "SUSE Bug 995377 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/995377"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6303",
"url": "https://bugzilla.suse.com/999665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-6303"
},
{
"cve": "CVE-2016-6304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6304"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6304",
"url": "https://www.suse.com/security/cve/CVE-2016-6304"
},
{
"category": "external",
"summary": "SUSE Bug 1001706 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1001706"
},
{
"category": "external",
"summary": "SUSE Bug 1003811 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1003811"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 1005579 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1005579"
},
{
"category": "external",
"summary": "SUSE Bug 1021375 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/1021375"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/999665"
},
{
"category": "external",
"summary": "SUSE Bug 999666 for CVE-2016-6304",
"url": "https://bugzilla.suse.com/999666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-6304"
},
{
"cve": "CVE-2016-6306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6306"
}
],
"notes": [
{
"category": "general",
"text": "The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6306",
"url": "https://www.suse.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "SUSE Bug 1004104 for CVE-2016-6306",
"url": "https://bugzilla.suse.com/1004104"
},
{
"category": "external",
"summary": "SUSE Bug 999665 for CVE-2016-6306",
"url": "https://bugzilla.suse.com/999665"
},
{
"category": "external",
"summary": "SUSE Bug 999668 for CVE-2016-6306",
"url": "https://bugzilla.suse.com/999668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-6306"
},
{
"cve": "CVE-2016-7052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7052"
}
],
"notes": [
{
"category": "general",
"text": "crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7052",
"url": "https://www.suse.com/security/cve/CVE-2016-7052"
},
{
"category": "external",
"summary": "SUSE Bug 1001148 for CVE-2016-7052",
"url": "https://bugzilla.suse.com/1001148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl-devel-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-hmac-32bit-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-1.0.2j-2.2.x86_64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.aarch64",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.ppc64le",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.s390x",
"openSUSE Tumbleweed:openssl-doc-1.0.2j-2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-7052"
}
]
}
OPENSUSE-SU-2024:10309-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libcrypto38-2.5.0-1.1 on GA media
Notes
Title of the patch
libcrypto38-2.5.0-1.1 on GA media
Description of the patch
These are all security issues fixed in the libcrypto38-2.5.0-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10309
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libcrypto38-2.5.0-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libcrypto38-2.5.0-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10309",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10309-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3502 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3502/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8176 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3194 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3195 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-4000 page",
"url": "https://www.suse.com/security/cve/CVE-2015-4000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5333 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5333/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5334 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5334/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0702 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0702/"
}
],
"title": "libcrypto38-2.5.0-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10309-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libcrypto38-2.5.0-1.1.aarch64",
"product": {
"name": "libcrypto38-2.5.0-1.1.aarch64",
"product_id": "libcrypto38-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libcrypto38-32bit-2.5.0-1.1.aarch64",
"product": {
"name": "libcrypto38-32bit-2.5.0-1.1.aarch64",
"product_id": "libcrypto38-32bit-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libressl-2.5.0-1.1.aarch64",
"product": {
"name": "libressl-2.5.0-1.1.aarch64",
"product_id": "libressl-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libressl-devel-2.5.0-1.1.aarch64",
"product": {
"name": "libressl-devel-2.5.0-1.1.aarch64",
"product_id": "libressl-devel-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libressl-devel-32bit-2.5.0-1.1.aarch64",
"product": {
"name": "libressl-devel-32bit-2.5.0-1.1.aarch64",
"product_id": "libressl-devel-32bit-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libressl-devel-doc-2.5.0-1.1.aarch64",
"product": {
"name": "libressl-devel-doc-2.5.0-1.1.aarch64",
"product_id": "libressl-devel-doc-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libssl39-2.5.0-1.1.aarch64",
"product": {
"name": "libssl39-2.5.0-1.1.aarch64",
"product_id": "libssl39-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libssl39-32bit-2.5.0-1.1.aarch64",
"product": {
"name": "libssl39-32bit-2.5.0-1.1.aarch64",
"product_id": "libssl39-32bit-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libtls11-2.5.0-1.1.aarch64",
"product": {
"name": "libtls11-2.5.0-1.1.aarch64",
"product_id": "libtls11-2.5.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libtls11-32bit-2.5.0-1.1.aarch64",
"product": {
"name": "libtls11-32bit-2.5.0-1.1.aarch64",
"product_id": "libtls11-32bit-2.5.0-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libcrypto38-2.5.0-1.1.ppc64le",
"product": {
"name": "libcrypto38-2.5.0-1.1.ppc64le",
"product_id": "libcrypto38-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libcrypto38-32bit-2.5.0-1.1.ppc64le",
"product": {
"name": "libcrypto38-32bit-2.5.0-1.1.ppc64le",
"product_id": "libcrypto38-32bit-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libressl-2.5.0-1.1.ppc64le",
"product": {
"name": "libressl-2.5.0-1.1.ppc64le",
"product_id": "libressl-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libressl-devel-2.5.0-1.1.ppc64le",
"product": {
"name": "libressl-devel-2.5.0-1.1.ppc64le",
"product_id": "libressl-devel-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libressl-devel-32bit-2.5.0-1.1.ppc64le",
"product": {
"name": "libressl-devel-32bit-2.5.0-1.1.ppc64le",
"product_id": "libressl-devel-32bit-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libressl-devel-doc-2.5.0-1.1.ppc64le",
"product": {
"name": "libressl-devel-doc-2.5.0-1.1.ppc64le",
"product_id": "libressl-devel-doc-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libssl39-2.5.0-1.1.ppc64le",
"product": {
"name": "libssl39-2.5.0-1.1.ppc64le",
"product_id": "libssl39-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libssl39-32bit-2.5.0-1.1.ppc64le",
"product": {
"name": "libssl39-32bit-2.5.0-1.1.ppc64le",
"product_id": "libssl39-32bit-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libtls11-2.5.0-1.1.ppc64le",
"product": {
"name": "libtls11-2.5.0-1.1.ppc64le",
"product_id": "libtls11-2.5.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libtls11-32bit-2.5.0-1.1.ppc64le",
"product": {
"name": "libtls11-32bit-2.5.0-1.1.ppc64le",
"product_id": "libtls11-32bit-2.5.0-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libcrypto38-2.5.0-1.1.s390x",
"product": {
"name": "libcrypto38-2.5.0-1.1.s390x",
"product_id": "libcrypto38-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libcrypto38-32bit-2.5.0-1.1.s390x",
"product": {
"name": "libcrypto38-32bit-2.5.0-1.1.s390x",
"product_id": "libcrypto38-32bit-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libressl-2.5.0-1.1.s390x",
"product": {
"name": "libressl-2.5.0-1.1.s390x",
"product_id": "libressl-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libressl-devel-2.5.0-1.1.s390x",
"product": {
"name": "libressl-devel-2.5.0-1.1.s390x",
"product_id": "libressl-devel-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libressl-devel-32bit-2.5.0-1.1.s390x",
"product": {
"name": "libressl-devel-32bit-2.5.0-1.1.s390x",
"product_id": "libressl-devel-32bit-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libressl-devel-doc-2.5.0-1.1.s390x",
"product": {
"name": "libressl-devel-doc-2.5.0-1.1.s390x",
"product_id": "libressl-devel-doc-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libssl39-2.5.0-1.1.s390x",
"product": {
"name": "libssl39-2.5.0-1.1.s390x",
"product_id": "libssl39-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libssl39-32bit-2.5.0-1.1.s390x",
"product": {
"name": "libssl39-32bit-2.5.0-1.1.s390x",
"product_id": "libssl39-32bit-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libtls11-2.5.0-1.1.s390x",
"product": {
"name": "libtls11-2.5.0-1.1.s390x",
"product_id": "libtls11-2.5.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libtls11-32bit-2.5.0-1.1.s390x",
"product": {
"name": "libtls11-32bit-2.5.0-1.1.s390x",
"product_id": "libtls11-32bit-2.5.0-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libcrypto38-2.5.0-1.1.x86_64",
"product": {
"name": "libcrypto38-2.5.0-1.1.x86_64",
"product_id": "libcrypto38-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libcrypto38-32bit-2.5.0-1.1.x86_64",
"product": {
"name": "libcrypto38-32bit-2.5.0-1.1.x86_64",
"product_id": "libcrypto38-32bit-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libressl-2.5.0-1.1.x86_64",
"product": {
"name": "libressl-2.5.0-1.1.x86_64",
"product_id": "libressl-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libressl-devel-2.5.0-1.1.x86_64",
"product": {
"name": "libressl-devel-2.5.0-1.1.x86_64",
"product_id": "libressl-devel-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libressl-devel-32bit-2.5.0-1.1.x86_64",
"product": {
"name": "libressl-devel-32bit-2.5.0-1.1.x86_64",
"product_id": "libressl-devel-32bit-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libressl-devel-doc-2.5.0-1.1.x86_64",
"product": {
"name": "libressl-devel-doc-2.5.0-1.1.x86_64",
"product_id": "libressl-devel-doc-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libssl39-2.5.0-1.1.x86_64",
"product": {
"name": "libssl39-2.5.0-1.1.x86_64",
"product_id": "libssl39-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libssl39-32bit-2.5.0-1.1.x86_64",
"product": {
"name": "libssl39-32bit-2.5.0-1.1.x86_64",
"product_id": "libssl39-32bit-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libtls11-2.5.0-1.1.x86_64",
"product": {
"name": "libtls11-2.5.0-1.1.x86_64",
"product_id": "libtls11-2.5.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libtls11-32bit-2.5.0-1.1.x86_64",
"product": {
"name": "libtls11-32bit-2.5.0-1.1.x86_64",
"product_id": "libtls11-32bit-2.5.0-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64"
},
"product_reference": "libcrypto38-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le"
},
"product_reference": "libcrypto38-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x"
},
"product_reference": "libcrypto38-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64"
},
"product_reference": "libcrypto38-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-32bit-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64"
},
"product_reference": "libcrypto38-32bit-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-32bit-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le"
},
"product_reference": "libcrypto38-32bit-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-32bit-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x"
},
"product_reference": "libcrypto38-32bit-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcrypto38-32bit-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64"
},
"product_reference": "libcrypto38-32bit-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64"
},
"product_reference": "libressl-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le"
},
"product_reference": "libressl-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x"
},
"product_reference": "libressl-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64"
},
"product_reference": "libressl-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64"
},
"product_reference": "libressl-devel-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le"
},
"product_reference": "libressl-devel-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x"
},
"product_reference": "libressl-devel-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64"
},
"product_reference": "libressl-devel-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-32bit-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64"
},
"product_reference": "libressl-devel-32bit-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-32bit-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le"
},
"product_reference": "libressl-devel-32bit-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-32bit-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x"
},
"product_reference": "libressl-devel-32bit-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-32bit-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64"
},
"product_reference": "libressl-devel-32bit-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-doc-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64"
},
"product_reference": "libressl-devel-doc-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-doc-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le"
},
"product_reference": "libressl-devel-doc-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-doc-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x"
},
"product_reference": "libressl-devel-doc-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libressl-devel-doc-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64"
},
"product_reference": "libressl-devel-doc-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64"
},
"product_reference": "libssl39-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le"
},
"product_reference": "libssl39-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x"
},
"product_reference": "libssl39-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64"
},
"product_reference": "libssl39-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-32bit-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64"
},
"product_reference": "libssl39-32bit-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-32bit-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le"
},
"product_reference": "libssl39-32bit-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-32bit-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x"
},
"product_reference": "libssl39-32bit-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssl39-32bit-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64"
},
"product_reference": "libssl39-32bit-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64"
},
"product_reference": "libtls11-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le"
},
"product_reference": "libtls11-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x"
},
"product_reference": "libtls11-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64"
},
"product_reference": "libtls11-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-32bit-2.5.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64"
},
"product_reference": "libtls11-32bit-2.5.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-32bit-2.5.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le"
},
"product_reference": "libtls11-32bit-2.5.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-32bit-2.5.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x"
},
"product_reference": "libtls11-32bit-2.5.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtls11-32bit-2.5.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
},
"product_reference": "libtls11-32bit-2.5.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3502",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3502"
}
],
"notes": [
{
"category": "general",
"text": "Apache Cordova Android before 3.5.1 allows remote attackers to open and send data to arbitrary applications via a URL with a crafted URI scheme for an Android intent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3502",
"url": "https://www.suse.com/security/cve/CVE-2014-3502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3502"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8176"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8176",
"url": "https://www.suse.com/security/cve/CVE-2014-8176"
},
{
"category": "external",
"summary": "SUSE Bug 1148697 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/1148697"
},
{
"category": "external",
"summary": "SUSE Bug 934494 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934494"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-8176",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-8176"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-3194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3194"
}
],
"notes": [
{
"category": "general",
"text": "crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3194",
"url": "https://www.suse.com/security/cve/CVE-2015-3194"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/976341"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3194"
},
{
"cve": "CVE-2015-3195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3195"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3195",
"url": "https://www.suse.com/security/cve/CVE-2015-3195"
},
{
"category": "external",
"summary": "SUSE Bug 923755 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/923755"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 963977 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/963977"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3195"
},
{
"cve": "CVE-2015-4000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-4000"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-4000",
"url": "https://www.suse.com/security/cve/CVE-2015-4000"
},
{
"category": "external",
"summary": "SUSE Bug 1074631 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1074631"
},
{
"category": "external",
"summary": "SUSE Bug 1211968 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1211968"
},
{
"category": "external",
"summary": "SUSE Bug 931600 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931600"
},
{
"category": "external",
"summary": "SUSE Bug 931698 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "external",
"summary": "SUSE Bug 931723 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931723"
},
{
"category": "external",
"summary": "SUSE Bug 931845 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931845"
},
{
"category": "external",
"summary": "SUSE Bug 932026 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932026"
},
{
"category": "external",
"summary": "SUSE Bug 932483 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932483"
},
{
"category": "external",
"summary": "SUSE Bug 934789 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/934789"
},
{
"category": "external",
"summary": "SUSE Bug 935033 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935033"
},
{
"category": "external",
"summary": "SUSE Bug 935540 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935540"
},
{
"category": "external",
"summary": "SUSE Bug 935979 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935979"
},
{
"category": "external",
"summary": "SUSE Bug 937202 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937202"
},
{
"category": "external",
"summary": "SUSE Bug 937766 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937766"
},
{
"category": "external",
"summary": "SUSE Bug 938248 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938248"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 938895 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938895"
},
{
"category": "external",
"summary": "SUSE Bug 938905 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938905"
},
{
"category": "external",
"summary": "SUSE Bug 938906 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938906"
},
{
"category": "external",
"summary": "SUSE Bug 938913 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938913"
},
{
"category": "external",
"summary": "SUSE Bug 938945 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938945"
},
{
"category": "external",
"summary": "SUSE Bug 943664 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/943664"
},
{
"category": "external",
"summary": "SUSE Bug 944729 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/944729"
},
{
"category": "external",
"summary": "SUSE Bug 945582 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/945582"
},
{
"category": "external",
"summary": "SUSE Bug 955589 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/955589"
},
{
"category": "external",
"summary": "SUSE Bug 980406 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/980406"
},
{
"category": "external",
"summary": "SUSE Bug 990592 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/990592"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-4000"
},
{
"cve": "CVE-2015-5333",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5333"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (memory consumption) via a large number of ASN.1 object identifiers in X.509 certificates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5333",
"url": "https://www.suse.com/security/cve/CVE-2015-5333"
},
{
"category": "external",
"summary": "SUSE Bug 950707 for CVE-2015-5333",
"url": "https://bugzilla.suse.com/950707"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2015-5333",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-5333"
},
{
"cve": "CVE-2015-5334",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5334"
}
],
"notes": [
{
"category": "general",
"text": "Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (program crash) or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability exists because of an incorrect fix for CVE-2014-3508.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5334",
"url": "https://www.suse.com/security/cve/CVE-2015-5334"
},
{
"category": "external",
"summary": "SUSE Bug 950707 for CVE-2015-5334",
"url": "https://bugzilla.suse.com/950707"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2015-5334",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-5334"
},
{
"cve": "CVE-2016-0702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0702"
}
],
"notes": [
{
"category": "general",
"text": "The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a \"CacheBleed\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0702",
"url": "https://www.suse.com/security/cve/CVE-2016-0702"
},
{
"category": "external",
"summary": "SUSE Bug 1007806 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/1007806"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968050 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968050"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libcrypto38-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libressl-devel-doc-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libssl39-32bit-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-2.5.0-1.1.x86_64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.aarch64",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.ppc64le",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.s390x",
"openSUSE Tumbleweed:libtls11-32bit-2.5.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0702"
}
]
}
OPENSUSE-SU-2024:10529-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libopenssl1_0_0-steam-1.0.2h-4.1 on GA media
Notes
Title of the patch
libopenssl1_0_0-steam-1.0.2h-4.1 on GA media
Description of the patch
These are all security issues fixed in the libopenssl1_0_0-steam-1.0.2h-4.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10529
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libopenssl1_0_0-steam-1.0.2h-4.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libopenssl1_0_0-steam-1.0.2h-4.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10529",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10529-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-7250 page",
"url": "https://www.suse.com/security/cve/CVE-2006-7250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5077 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0590 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0591 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0789 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1377 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1377/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1378 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1379 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1386 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1386/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1387 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1387/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0740 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0742 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1633 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-2939 page",
"url": "https://www.suse.com/security/cve/CVE-2010-2939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3864 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-5298 page",
"url": "https://www.suse.com/security/cve/CVE-2010-5298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-0014 page",
"url": "https://www.suse.com/security/cve/CVE-2011-0014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3207 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3210 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4108 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4576 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4577 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4619 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0027 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0050 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0884 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-1165 page",
"url": "https://www.suse.com/security/cve/CVE-2012-1165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2110 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2686 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-4929 page",
"url": "https://www.suse.com/security/cve/CVE-2012-4929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0166 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0169 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4353 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6449 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6450 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6450/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0076 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0160 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0195 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0198 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0221 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0224 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3470 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3505 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3506 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3507 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3508 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3509 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3510 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3511 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3512 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3513 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3567 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3568 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3569 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3572 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5139 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8275 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0204 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0205 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0206 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0209 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0286 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0287 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0293 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1790 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1791 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1792 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1793 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1794 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3193 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3194 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3195 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3196 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3197 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0701 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0702 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0705 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0797 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0798 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0800 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2105 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2106 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2107 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2109 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2109/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2176 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2176/"
}
],
"title": "libopenssl1_0_0-steam-1.0.2h-4.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10529-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"product": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"product_id": "libopenssl1_0_0-steam-1.0.2h-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"product": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"product_id": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"product": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"product_id": "libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"product": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"product_id": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"product": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"product_id": "libopenssl1_0_0-steam-1.0.2h-4.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"product": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"product_id": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"product": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"product_id": "libopenssl1_0_0-steam-1.0.2h-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64",
"product": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64",
"product_id": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64"
},
"product_reference": "libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le"
},
"product_reference": "libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x"
},
"product_reference": "libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-1.0.2h-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64"
},
"product_reference": "libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64"
},
"product_reference": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le"
},
"product_reference": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x"
},
"product_reference": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
},
"product_reference": "libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2006-7250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-7250"
}
],
"notes": [
{
"category": "general",
"text": "The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-7250",
"url": "https://www.suse.com/security/cve/CVE-2006-7250"
},
{
"category": "external",
"summary": "SUSE Bug 748738 for CVE-2006-7250",
"url": "https://bugzilla.suse.com/748738"
},
{
"category": "external",
"summary": "SUSE Bug 883307 for CVE-2006-7250",
"url": "https://bugzilla.suse.com/883307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2006-7250"
},
{
"cve": "CVE-2008-5077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5077"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5077",
"url": "https://www.suse.com/security/cve/CVE-2008-5077"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 465675 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/465675"
},
{
"category": "external",
"summary": "SUSE Bug 465676 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/465676"
},
{
"category": "external",
"summary": "SUSE Bug 468866 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/468866"
},
{
"category": "external",
"summary": "SUSE Bug 470968 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/470968"
},
{
"category": "external",
"summary": "SUSE Bug 475108 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/475108"
},
{
"category": "external",
"summary": "SUSE Bug 552497 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/552497"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 708266 for CVE-2008-5077",
"url": "https://bugzilla.suse.com/708266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-5077"
},
{
"cve": "CVE-2009-0590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0590"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0590",
"url": "https://www.suse.com/security/cve/CVE-2009-0590"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0590",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-0590"
},
{
"cve": "CVE-2009-0591",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0591"
}
],
"notes": [
{
"category": "general",
"text": "The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote attackers to repudiate a signature that originally appeared to be valid but was actually invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0591",
"url": "https://www.suse.com/security/cve/CVE-2009-0591"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0591",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0591",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2009-0591"
},
{
"cve": "CVE-2009-0789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0789"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the public key of a certificate, as demonstrated by an RSA public key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0789",
"url": "https://www.suse.com/security/cve/CVE-2009-0789"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-0789",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-0789"
},
{
"cve": "CVE-2009-1377",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1377"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of \"future epoch\" DTLS records that are buffered in a queue, aka \"DTLS record buffer limitation bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1377",
"url": "https://www.suse.com/security/cve/CVE-2009-1377"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1377",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1377"
},
{
"cve": "CVE-2009-1378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1378"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka \"DTLS fragment handling memory leak.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1378",
"url": "https://www.suse.com/security/cve/CVE-2009-1378"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1378",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1378"
},
{
"cve": "CVE-2009-1379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1379"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service (openssl s_client crash) and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server that uses a crafted server certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1379",
"url": "https://www.suse.com/security/cve/CVE-2009-1379"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 504687 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/504687"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1379",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1379"
},
{
"cve": "CVE-2009-1386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1386"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1386",
"url": "https://www.suse.com/security/cve/CVE-2009-1386"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 509031 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/509031"
},
{
"category": "external",
"summary": "SUSE Bug 515659 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/515659"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1386",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1386"
},
{
"cve": "CVE-2009-1387",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1387"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a \"fragment bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1387",
"url": "https://www.suse.com/security/cve/CVE-2009-1387"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 509031 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/509031"
},
{
"category": "external",
"summary": "SUSE Bug 515659 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/515659"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-1387",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1387"
},
{
"cve": "CVE-2010-0740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0740"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0740",
"url": "https://www.suse.com/security/cve/CVE-2010-0740"
},
{
"category": "external",
"summary": "SUSE Bug 590833 for CVE-2010-0740",
"url": "https://bugzilla.suse.com/590833"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-0740",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0740"
},
{
"cve": "CVE-2010-0742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0742"
}
],
"notes": [
{
"category": "general",
"text": "The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, and possibly execute arbitrary code, via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0742",
"url": "https://www.suse.com/security/cve/CVE-2010-0742"
},
{
"category": "external",
"summary": "SUSE Bug 610642 for CVE-2010-0742",
"url": "https://bugzilla.suse.com/610642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-0742"
},
{
"cve": "CVE-2010-1633",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1633"
}
],
"notes": [
{
"category": "general",
"text": "RSA verification recovery in the EVP_PKEY_verify_recover function in OpenSSL 1.x before 1.0.0a, as used by pkeyutl and possibly other applications, returns uninitialized memory upon failure, which might allow context-dependent attackers to bypass intended key requirements or obtain sensitive information via unspecified vectors. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1633",
"url": "https://www.suse.com/security/cve/CVE-2010-1633"
},
{
"category": "external",
"summary": "SUSE Bug 610642 for CVE-2010-1633",
"url": "https://bugzilla.suse.com/610642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1633"
},
{
"cve": "CVE-2010-2939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-2939"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-2939",
"url": "https://www.suse.com/security/cve/CVE-2010-2939"
},
{
"category": "external",
"summary": "SUSE Bug 489641 for CVE-2010-2939",
"url": "https://bugzilla.suse.com/489641"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-2939",
"url": "https://bugzilla.suse.com/629905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-2939"
},
{
"cve": "CVE-2010-3864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3864"
}
],
"notes": [
{
"category": "general",
"text": "Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3864",
"url": "https://www.suse.com/security/cve/CVE-2010-3864"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2010-3864",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 651003 for CVE-2010-3864",
"url": "https://bugzilla.suse.com/651003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-3864"
},
{
"cve": "CVE-2010-5298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-5298"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-5298",
"url": "https://www.suse.com/security/cve/CVE-2010-5298"
},
{
"category": "external",
"summary": "SUSE Bug 873351 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/873351"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2010-5298",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2010-5298"
},
{
"cve": "CVE-2011-0014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-0014"
}
],
"notes": [
{
"category": "general",
"text": "ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka \"OCSP stapling vulnerability.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-0014",
"url": "https://www.suse.com/security/cve/CVE-2011-0014"
},
{
"category": "external",
"summary": "SUSE Bug 670526 for CVE-2011-0014",
"url": "https://bugzilla.suse.com/670526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-0014"
},
{
"cve": "CVE-2011-3207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3207"
}
],
"notes": [
{
"category": "general",
"text": "crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3207",
"url": "https://www.suse.com/security/cve/CVE-2011-3207"
},
{
"category": "external",
"summary": "SUSE Bug 716143 for CVE-2011-3207",
"url": "https://bugzilla.suse.com/716143"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-3207",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3207"
},
{
"cve": "CVE-2011-3210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3210"
}
],
"notes": [
{
"category": "general",
"text": "The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service (daemon crash) via out-of-order messages that violate the TLS protocol.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3210",
"url": "https://www.suse.com/security/cve/CVE-2011-3210"
},
{
"category": "external",
"summary": "SUSE Bug 716144 for CVE-2011-3210",
"url": "https://bugzilla.suse.com/716144"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-3210",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3210"
},
{
"cve": "CVE-2011-4108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4108"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4108",
"url": "https://www.suse.com/security/cve/CVE-2011-4108"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 742821 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/742821"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4108",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4108"
},
{
"cve": "CVE-2011-4576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4576"
}
],
"notes": [
{
"category": "general",
"text": "The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4576",
"url": "https://www.suse.com/security/cve/CVE-2011-4576"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4576",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4576"
},
{
"cve": "CVE-2011-4577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4577"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4577",
"url": "https://www.suse.com/security/cve/CVE-2011-4577"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4577",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4577"
},
{
"cve": "CVE-2011-4619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4619"
}
],
"notes": [
{
"category": "general",
"text": "The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4619",
"url": "https://www.suse.com/security/cve/CVE-2011-4619"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 799454 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/799454"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2011-4619",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4619"
},
{
"cve": "CVE-2012-0027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0027"
}
],
"notes": [
{
"category": "general",
"text": "The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0027",
"url": "https://www.suse.com/security/cve/CVE-2012-0027"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2012-0027",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-0027",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0027"
},
{
"cve": "CVE-2012-0050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0050"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0050",
"url": "https://www.suse.com/security/cve/CVE-2012-0050"
},
{
"category": "external",
"summary": "SUSE Bug 739719 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/739719"
},
{
"category": "external",
"summary": "SUSE Bug 742821 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/742821"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2012-0050",
"url": "https://bugzilla.suse.com/758060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0050"
},
{
"cve": "CVE-2012-0884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0884"
}
],
"notes": [
{
"category": "general",
"text": "The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack (MMA) adaptive chosen ciphertext attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0884",
"url": "https://www.suse.com/security/cve/CVE-2012-0884"
},
{
"category": "external",
"summary": "SUSE Bug 749210 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/749210"
},
{
"category": "external",
"summary": "SUSE Bug 749735 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/749735"
},
{
"category": "external",
"summary": "SUSE Bug 751977 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/751977"
},
{
"category": "external",
"summary": "SUSE Bug 754640 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/754640"
},
{
"category": "external",
"summary": "SUSE Bug 761819 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/761819"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-0884",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0884"
},
{
"cve": "CVE-2012-1165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-1165"
}
],
"notes": [
{
"category": "general",
"text": "The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-1165",
"url": "https://www.suse.com/security/cve/CVE-2012-1165"
},
{
"category": "external",
"summary": "SUSE Bug 749210 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/749210"
},
{
"category": "external",
"summary": "SUSE Bug 749213 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/749213"
},
{
"category": "external",
"summary": "SUSE Bug 751946 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/751946"
},
{
"category": "external",
"summary": "SUSE Bug 754640 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/754640"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-1165",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-1165"
},
{
"cve": "CVE-2012-2110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2110"
}
],
"notes": [
{
"category": "general",
"text": "The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an X.509 certificate or an RSA public key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2110",
"url": "https://www.suse.com/security/cve/CVE-2012-2110"
},
{
"category": "external",
"summary": "SUSE Bug 758060 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/758060"
},
{
"category": "external",
"summary": "SUSE Bug 778825 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/778825"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-2110",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2012-2110"
},
{
"cve": "CVE-2012-2686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2686"
}
],
"notes": [
{
"category": "general",
"text": "crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2686",
"url": "https://www.suse.com/security/cve/CVE-2012-2686"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2012-2686",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2012-2686",
"url": "https://bugzilla.suse.com/854391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2686"
},
{
"cve": "CVE-2012-4929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-4929"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a \"CRIME\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-4929",
"url": "https://www.suse.com/security/cve/CVE-2012-4929"
},
{
"category": "external",
"summary": "SUSE Bug 1011293 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/1011293"
},
{
"category": "external",
"summary": "SUSE Bug 779952 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/779952"
},
{
"category": "external",
"summary": "SUSE Bug 793420 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/793420"
},
{
"category": "external",
"summary": "SUSE Bug 803004 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/803004"
},
{
"category": "external",
"summary": "SUSE Bug 847895 for CVE-2012-4929",
"url": "https://bugzilla.suse.com/847895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-4929"
},
{
"cve": "CVE-2013-0166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0166"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCSP servers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0166",
"url": "https://www.suse.com/security/cve/CVE-2013-0166"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 802746 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/802746"
},
{
"category": "external",
"summary": "SUSE Bug 813366 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/813366"
},
{
"category": "external",
"summary": "SUSE Bug 821818 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/821818"
},
{
"category": "external",
"summary": "SUSE Bug 833408 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/833408"
},
{
"category": "external",
"summary": "SUSE Bug 854391 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/854391"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2013-0166",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-0166"
},
{
"cve": "CVE-2013-0169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0169"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0169",
"url": "https://www.suse.com/security/cve/CVE-2013-0169"
},
{
"category": "external",
"summary": "SUSE Bug 1070148 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1070148"
},
{
"category": "external",
"summary": "SUSE Bug 1103036 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1103036"
},
{
"category": "external",
"summary": "SUSE Bug 1103597 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/1103597"
},
{
"category": "external",
"summary": "SUSE Bug 802184 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802184"
},
{
"category": "external",
"summary": "SUSE Bug 802648 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802648"
},
{
"category": "external",
"summary": "SUSE Bug 802746 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/802746"
},
{
"category": "external",
"summary": "SUSE Bug 803379 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/803379"
},
{
"category": "external",
"summary": "SUSE Bug 804654 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/804654"
},
{
"category": "external",
"summary": "SUSE Bug 809839 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/809839"
},
{
"category": "external",
"summary": "SUSE Bug 813366 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/813366"
},
{
"category": "external",
"summary": "SUSE Bug 813939 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/813939"
},
{
"category": "external",
"summary": "SUSE Bug 821818 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/821818"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977616 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/977616"
},
{
"category": "external",
"summary": "SUSE Bug 984977 for CVE-2013-0169",
"url": "https://bugzilla.suse.com/984977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-0169"
},
{
"cve": "CVE-2013-4353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4353"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4353",
"url": "https://www.suse.com/security/cve/CVE-2013-4353"
},
{
"category": "external",
"summary": "SUSE Bug 857640 for CVE-2013-4353",
"url": "https://bugzilla.suse.com/857640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-4353"
},
{
"cve": "CVE-2013-6449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6449"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6449",
"url": "https://www.suse.com/security/cve/CVE-2013-6449"
},
{
"category": "external",
"summary": "SUSE Bug 856687 for CVE-2013-6449",
"url": "https://bugzilla.suse.com/856687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6449"
},
{
"cve": "CVE-2013-6450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6450"
}
],
"notes": [
{
"category": "general",
"text": "The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6450",
"url": "https://www.suse.com/security/cve/CVE-2013-6450"
},
{
"category": "external",
"summary": "SUSE Bug 857203 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/857203"
},
{
"category": "external",
"summary": "SUSE Bug 861384 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/861384"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2013-6450",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6450"
},
{
"cve": "CVE-2014-0076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0076"
}
],
"notes": [
{
"category": "general",
"text": "The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0076",
"url": "https://www.suse.com/security/cve/CVE-2014-0076"
},
{
"category": "external",
"summary": "SUSE Bug 869945 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/869945"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0076",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0076"
},
{
"cve": "CVE-2014-0160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0160"
}
],
"notes": [
{
"category": "general",
"text": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0160",
"url": "https://www.suse.com/security/cve/CVE-2014-0160"
},
{
"category": "external",
"summary": "SUSE Bug 872299 for CVE-2014-0160",
"url": "https://bugzilla.suse.com/872299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-0160"
},
{
"cve": "CVE-2014-0195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0195"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0195",
"url": "https://www.suse.com/security/cve/CVE-2014-0195"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0195",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0195"
},
{
"cve": "CVE-2014-0198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0198"
}
],
"notes": [
{
"category": "general",
"text": "The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0198",
"url": "https://www.suse.com/security/cve/CVE-2014-0198"
},
{
"category": "external",
"summary": "SUSE Bug 876282 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/876282"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0198",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0198"
},
{
"cve": "CVE-2014-0221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0221"
}
],
"notes": [
{
"category": "general",
"text": "The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0221",
"url": "https://www.suse.com/security/cve/CVE-2014-0221"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0221",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0221"
},
{
"cve": "CVE-2014-0224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0224"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0224",
"url": "https://www.suse.com/security/cve/CVE-2014-0224"
},
{
"category": "external",
"summary": "SUSE Bug 1146657 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/1146657"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 881743 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/881743"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 892403 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/892403"
},
{
"category": "external",
"summary": "SUSE Bug 901237 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/901237"
},
{
"category": "external",
"summary": "SUSE Bug 903703 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/903703"
},
{
"category": "external",
"summary": "SUSE Bug 905018 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905018"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 914447 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/914447"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/915913"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-0224",
"url": "https://bugzilla.suse.com/916239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-0224"
},
{
"cve": "CVE-2014-3470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3470"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3470",
"url": "https://www.suse.com/security/cve/CVE-2014-3470"
},
{
"category": "external",
"summary": "SUSE Bug 880891 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/880891"
},
{
"category": "external",
"summary": "SUSE Bug 883126 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/883126"
},
{
"category": "external",
"summary": "SUSE Bug 885777 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/885777"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 915913 for CVE-2014-3470",
"url": "https://bugzilla.suse.com/915913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3470"
},
{
"cve": "CVE-2014-3505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3505"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (application crash) via crafted DTLS packets that trigger an error condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3505",
"url": "https://www.suse.com/security/cve/CVE-2014-3505"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890767 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/890767"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3505",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3506"
}
],
"notes": [
{
"category": "general",
"text": "d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via crafted DTLS handshake messages that trigger memory allocations corresponding to large length values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3506",
"url": "https://www.suse.com/security/cve/CVE-2014-3506"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890768 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/890768"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3506",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3507"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service (memory consumption) via zero-length DTLS fragments that trigger improper handling of the return value of a certain insert function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3507",
"url": "https://www.suse.com/security/cve/CVE-2014-3507"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890769 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/890769"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3507",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3508"
}
],
"notes": [
{
"category": "general",
"text": "The OBJ_obj2txt function in crypto/objects/obj_dat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of \u0027\\0\u0027 characters, which allows context-dependent attackers to obtain sensitive information from process stack memory by reading output from X509_name_oneline, X509_name_print_ex, and unspecified other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3508",
"url": "https://www.suse.com/security/cve/CVE-2014-3508"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 950708 for CVE-2014-3508",
"url": "https://bugzilla.suse.com/950708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3509"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL servers to cause a denial of service (memory overwrite and client application crash) or possibly have unspecified other impact by sending Elliptic Curve (EC) Supported Point Formats Extension data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3509",
"url": "https://www.suse.com/security/cve/CVE-2014-3509"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890766 for CVE-2014-3509",
"url": "https://bugzilla.suse.com/890766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3510"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3510",
"url": "https://www.suse.com/security/cve/CVE-2014-3510"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890764 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890764"
},
{
"category": "external",
"summary": "SUSE Bug 890770 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/890770"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3510",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3511"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3511",
"url": "https://www.suse.com/security/cve/CVE-2014-3511"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890771 for CVE-2014-3511",
"url": "https://bugzilla.suse.com/890771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3512"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3512",
"url": "https://www.suse.com/security/cve/CVE-2014-3512"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890772 for CVE-2014-3512",
"url": "https://bugzilla.suse.com/890772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-3513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3513"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3513",
"url": "https://www.suse.com/security/cve/CVE-2014-3513"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3513",
"url": "https://bugzilla.suse.com/901277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3513"
},
{
"cve": "CVE-2014-3567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3567"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3567",
"url": "https://www.suse.com/security/cve/CVE-2014-3567"
},
{
"category": "external",
"summary": "SUSE Bug 877506 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/877506"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3567",
"url": "https://bugzilla.suse.com/905106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-3567"
},
{
"cve": "CVE-2014-3568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3568"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23_clnt.c and s23_srvr.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3568",
"url": "https://www.suse.com/security/cve/CVE-2014-3568"
},
{
"category": "external",
"summary": "SUSE Bug 901277 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/901277"
},
{
"category": "external",
"summary": "SUSE Bug 905106 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/905106"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3568",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3568"
},
{
"cve": "CVE-2014-3569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3569"
}
],
"notes": [
{
"category": "general",
"text": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3569",
"url": "https://www.suse.com/security/cve/CVE-2014-3569"
},
{
"category": "external",
"summary": "SUSE Bug 911399 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/911399"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2014-3569",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3569"
},
{
"cve": "CVE-2014-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3570"
}
],
"notes": [
{
"category": "general",
"text": "The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3570",
"url": "https://www.suse.com/security/cve/CVE-2014-3570"
},
{
"category": "external",
"summary": "SUSE Bug 912296 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/912296"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 944456 for CVE-2014-3570",
"url": "https://bugzilla.suse.com/944456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3570"
},
{
"cve": "CVE-2014-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3571"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_pkt.c and the ssl3_read_n function in s3_pkt.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3571",
"url": "https://www.suse.com/security/cve/CVE-2014-3571"
},
{
"category": "external",
"summary": "SUSE Bug 912294 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/912294"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3571",
"url": "https://bugzilla.suse.com/927623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3571"
},
{
"cve": "CVE-2014-3572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3572"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3572",
"url": "https://www.suse.com/security/cve/CVE-2014-3572"
},
{
"category": "external",
"summary": "SUSE Bug 912015 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/912015"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-3572",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3572"
},
{
"cve": "CVE-2014-5139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5139"
}
],
"notes": [
{
"category": "general",
"text": "The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5139",
"url": "https://www.suse.com/security/cve/CVE-2014-5139"
},
{
"category": "external",
"summary": "SUSE Bug 886831 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/886831"
},
{
"category": "external",
"summary": "SUSE Bug 890759 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890759"
},
{
"category": "external",
"summary": "SUSE Bug 890765 for CVE-2014-5139",
"url": "https://bugzilla.suse.com/890765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2014-5139"
},
{
"cve": "CVE-2014-8275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8275"
}
],
"notes": [
{
"category": "general",
"text": "OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate\u0027s unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8275",
"url": "https://www.suse.com/security/cve/CVE-2014-8275"
},
{
"category": "external",
"summary": "SUSE Bug 912018 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/912018"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2014-8275",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8275"
},
{
"cve": "CVE-2015-0204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0204"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the \"FREAK\" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0204",
"url": "https://www.suse.com/security/cve/CVE-2015-0204"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 920482 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920482"
},
{
"category": "external",
"summary": "SUSE Bug 920484 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/920484"
},
{
"category": "external",
"summary": "SUSE Bug 927591 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927591"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 936787 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/936787"
},
{
"category": "external",
"summary": "SUSE Bug 952088 for CVE-2015-0204",
"url": "https://bugzilla.suse.com/952088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0204"
},
{
"cve": "CVE-2015-0205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0205"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0205",
"url": "https://www.suse.com/security/cve/CVE-2015-0205"
},
{
"category": "external",
"summary": "SUSE Bug 912293 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/912293"
},
{
"category": "external",
"summary": "SUSE Bug 915848 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/915848"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0205",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0205"
},
{
"cve": "CVE-2015-0206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0206"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0206",
"url": "https://www.suse.com/security/cve/CVE-2015-0206"
},
{
"category": "external",
"summary": "SUSE Bug 912292 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/912292"
},
{
"category": "external",
"summary": "SUSE Bug 927623 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/927623"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0206",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0206"
},
{
"cve": "CVE-2015-0209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0209"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0209",
"url": "https://www.suse.com/security/cve/CVE-2015-0209"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0209",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0209"
},
{
"cve": "CVE-2015-0286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0286"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted X.509 certificate to an endpoint that uses the certificate-verification feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0286",
"url": "https://www.suse.com/security/cve/CVE-2015-0286"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922496 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/922496"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0286",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0286"
},
{
"cve": "CVE-2015-0287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0287"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0287",
"url": "https://www.suse.com/security/cve/CVE-2015-0287"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922499 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/922499"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 991722 for CVE-2015-0287",
"url": "https://bugzilla.suse.com/991722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0287"
},
{
"cve": "CVE-2015-0288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0288"
}
],
"notes": [
{
"category": "general",
"text": "The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0288",
"url": "https://www.suse.com/security/cve/CVE-2015-0288"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 920236 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/920236"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-0288",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0288"
},
{
"cve": "CVE-2015-0289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0289"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0289",
"url": "https://www.suse.com/security/cve/CVE-2015-0289"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922500 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/922500"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-0289",
"url": "https://bugzilla.suse.com/937891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0289"
},
{
"cve": "CVE-2015-0293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0293"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0293",
"url": "https://www.suse.com/security/cve/CVE-2015-0293"
},
{
"category": "external",
"summary": "SUSE Bug 912014 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/912014"
},
{
"category": "external",
"summary": "SUSE Bug 919648 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/919648"
},
{
"category": "external",
"summary": "SUSE Bug 922488 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/922488"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968051 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968051"
},
{
"category": "external",
"summary": "SUSE Bug 968053 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/968053"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-0293",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-0293"
},
{
"cve": "CVE-2015-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1788"
}
],
"notes": [
{
"category": "general",
"text": "The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1788",
"url": "https://www.suse.com/security/cve/CVE-2015-1788"
},
{
"category": "external",
"summary": "SUSE Bug 934487 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934487"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1788",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1788"
},
{
"cve": "CVE-2015-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1789"
}
],
"notes": [
{
"category": "general",
"text": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1789",
"url": "https://www.suse.com/security/cve/CVE-2015-1789"
},
{
"category": "external",
"summary": "SUSE Bug 934489 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934489"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1789",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-1789"
},
{
"cve": "CVE-2015-1790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1790"
}
],
"notes": [
{
"category": "general",
"text": "The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1790",
"url": "https://www.suse.com/security/cve/CVE-2015-1790"
},
{
"category": "external",
"summary": "SUSE Bug 934491 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934491"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 936586 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/936586"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-1790",
"url": "https://bugzilla.suse.com/938432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1790"
},
{
"cve": "CVE-2015-1791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1791"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1791",
"url": "https://www.suse.com/security/cve/CVE-2015-1791"
},
{
"category": "external",
"summary": "SUSE Bug 933911 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/933911"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/986238"
},
{
"category": "external",
"summary": "SUSE Bug 989464 for CVE-2015-1791",
"url": "https://bugzilla.suse.com/989464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1791"
},
{
"cve": "CVE-2015-1792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1792"
}
],
"notes": [
{
"category": "general",
"text": "The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1792",
"url": "https://www.suse.com/security/cve/CVE-2015-1792"
},
{
"category": "external",
"summary": "SUSE Bug 934493 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934493"
},
{
"category": "external",
"summary": "SUSE Bug 934666 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/934666"
},
{
"category": "external",
"summary": "SUSE Bug 937891 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/937891"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-1792",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1792"
},
{
"cve": "CVE-2015-1793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1793"
}
],
"notes": [
{
"category": "general",
"text": "The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1793",
"url": "https://www.suse.com/security/cve/CVE-2015-1793"
},
{
"category": "external",
"summary": "SUSE Bug 936746 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/936746"
},
{
"category": "external",
"summary": "SUSE Bug 937637 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/937637"
},
{
"category": "external",
"summary": "SUSE Bug 951391 for CVE-2015-1793",
"url": "https://bugzilla.suse.com/951391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1793"
},
{
"cve": "CVE-2015-1794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1794"
}
],
"notes": [
{
"category": "general",
"text": "The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1794",
"url": "https://www.suse.com/security/cve/CVE-2015-1794"
},
{
"category": "external",
"summary": "SUSE Bug 957984 for CVE-2015-1794",
"url": "https://bugzilla.suse.com/957984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-1794"
},
{
"cve": "CVE-2015-3193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3193"
}
],
"notes": [
{
"category": "general",
"text": "The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3193",
"url": "https://www.suse.com/security/cve/CVE-2015-3193"
},
{
"category": "external",
"summary": "SUSE Bug 1022086 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1022086"
},
{
"category": "external",
"summary": "SUSE Bug 1066242 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1066242"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/957814"
},
{
"category": "external",
"summary": "SUSE Bug 960151 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/960151"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3193",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3193"
},
{
"cve": "CVE-2015-3194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3194"
}
],
"notes": [
{
"category": "general",
"text": "crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3194",
"url": "https://www.suse.com/security/cve/CVE-2015-3194"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/976341"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2015-3194",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3194"
},
{
"cve": "CVE-2015-3195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3195"
}
],
"notes": [
{
"category": "general",
"text": "The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3195",
"url": "https://www.suse.com/security/cve/CVE-2015-3195"
},
{
"category": "external",
"summary": "SUSE Bug 923755 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/923755"
},
{
"category": "external",
"summary": "SUSE Bug 957812 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957812"
},
{
"category": "external",
"summary": "SUSE Bug 957815 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/957815"
},
{
"category": "external",
"summary": "SUSE Bug 958768 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/958768"
},
{
"category": "external",
"summary": "SUSE Bug 963977 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/963977"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2015-3195",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3195"
},
{
"cve": "CVE-2015-3196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3196"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3196",
"url": "https://www.suse.com/security/cve/CVE-2015-3196"
},
{
"category": "external",
"summary": "SUSE Bug 957813 for CVE-2015-3196",
"url": "https://bugzilla.suse.com/957813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3196"
},
{
"cve": "CVE-2015-3197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3197"
}
],
"notes": [
{
"category": "general",
"text": "ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3197",
"url": "https://www.suse.com/security/cve/CVE-2015-3197"
},
{
"category": "external",
"summary": "SUSE Bug 963410 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/963410"
},
{
"category": "external",
"summary": "SUSE Bug 963415 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/963415"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968046 for CVE-2015-3197",
"url": "https://bugzilla.suse.com/968046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-3197"
},
{
"cve": "CVE-2016-0701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0701"
}
],
"notes": [
{
"category": "general",
"text": "The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0701",
"url": "https://www.suse.com/security/cve/CVE-2016-0701"
},
{
"category": "external",
"summary": "SUSE Bug 1071906 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1071906"
},
{
"category": "external",
"summary": "SUSE Bug 1176331 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1176331"
},
{
"category": "external",
"summary": "SUSE Bug 1195379 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/1195379"
},
{
"category": "external",
"summary": "SUSE Bug 963410 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/963410"
},
{
"category": "external",
"summary": "SUSE Bug 963413 for CVE-2016-0701",
"url": "https://bugzilla.suse.com/963413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0701"
},
{
"cve": "CVE-2016-0702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0702"
}
],
"notes": [
{
"category": "general",
"text": "The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a \"CacheBleed\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0702",
"url": "https://www.suse.com/security/cve/CVE-2016-0702"
},
{
"category": "external",
"summary": "SUSE Bug 1007806 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/1007806"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968050 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/968050"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0702",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0702"
},
{
"cve": "CVE-2016-0705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0705"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0705",
"url": "https://www.suse.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968047 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/968047"
},
{
"category": "external",
"summary": "SUSE Bug 971238 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/971238"
},
{
"category": "external",
"summary": "SUSE Bug 976341 for CVE-2016-0705",
"url": "https://bugzilla.suse.com/976341"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2016-0705"
},
{
"cve": "CVE-2016-0797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0797"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0797",
"url": "https://www.suse.com/security/cve/CVE-2016-0797"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968048 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/968048"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-0797",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0797"
},
{
"cve": "CVE-2016-0798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0798"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0798",
"url": "https://www.suse.com/security/cve/CVE-2016-0798"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0798",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968265 for CVE-2016-0798",
"url": "https://bugzilla.suse.com/968265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-0798"
},
{
"cve": "CVE-2016-0800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0800"
}
],
"notes": [
{
"category": "general",
"text": "The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a \"DROWN\" attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0800",
"url": "https://www.suse.com/security/cve/CVE-2016-0800"
},
{
"category": "external",
"summary": "SUSE Bug 1106871 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/1106871"
},
{
"category": "external",
"summary": "SUSE Bug 961377 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/961377"
},
{
"category": "external",
"summary": "SUSE Bug 968044 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968044"
},
{
"category": "external",
"summary": "SUSE Bug 968046 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968046"
},
{
"category": "external",
"summary": "SUSE Bug 968888 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/968888"
},
{
"category": "external",
"summary": "SUSE Bug 969591 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/969591"
},
{
"category": "external",
"summary": "SUSE Bug 979060 for CVE-2016-0800",
"url": "https://bugzilla.suse.com/979060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0800"
},
{
"cve": "CVE-2016-2105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2105"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2105",
"url": "https://www.suse.com/security/cve/CVE-2016-2105"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977614 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/977614"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 989902 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/989902"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/990369"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-2105",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2105"
},
{
"cve": "CVE-2016-2106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2106"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2106",
"url": "https://www.suse.com/security/cve/CVE-2016-2106"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977615 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/977615"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 979279 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/979279"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2106",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2106"
},
{
"cve": "CVE-2016-2107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2107"
}
],
"notes": [
{
"category": "general",
"text": "The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2107",
"url": "https://www.suse.com/security/cve/CVE-2016-2107"
},
{
"category": "external",
"summary": "SUSE Bug 976942 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/976942"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 977616 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/977616"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/990369"
},
{
"category": "external",
"summary": "SUSE Bug 990370 for CVE-2016-2107",
"url": "https://bugzilla.suse.com/990370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2107"
},
{
"cve": "CVE-2016-2109",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2109"
}
],
"notes": [
{
"category": "general",
"text": "The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2109",
"url": "https://www.suse.com/security/cve/CVE-2016-2109"
},
{
"category": "external",
"summary": "SUSE Bug 1015243 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/1015243"
},
{
"category": "external",
"summary": "SUSE Bug 976942 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/976942"
},
{
"category": "external",
"summary": "SUSE Bug 977584 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/977584"
},
{
"category": "external",
"summary": "SUSE Bug 978492 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/978492"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2109",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2109"
},
{
"cve": "CVE-2016-2176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2176"
}
],
"notes": [
{
"category": "general",
"text": "The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2176",
"url": "https://www.suse.com/security/cve/CVE-2016-2176"
},
{
"category": "external",
"summary": "SUSE Bug 978224 for CVE-2016-2176",
"url": "https://bugzilla.suse.com/978224"
},
{
"category": "external",
"summary": "SUSE Bug 990369 for CVE-2016-2176",
"url": "https://bugzilla.suse.com/990369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-1.0.2h-4.1.x86_64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.aarch64",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.ppc64le",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.s390x",
"openSUSE Tumbleweed:libopenssl1_0_0-steam-32bit-1.0.2h-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-2176"
}
]
}
GHSA-XFJR-6MMM-7HC7
Vulnerability from github – Published: 2022-05-17 19:57 – Updated: 2022-05-17 19:57
VLAI?
Details
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue.
{
"affected": [],
"aliases": [
"CVE-2014-3511"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2014-08-13T23:55:00Z",
"severity": "MODERATE"
},
"details": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue.",
"id": "GHSA-xfjr-6mmm-7hc7",
"modified": "2022-05-17T19:57:39Z",
"published": "2022-05-17T19:57:39Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3511"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"type": "WEB",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"type": "WEB",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"type": "WEB",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"type": "WEB",
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"type": "WEB",
"url": "https://support.citrix.com/article/CTX216642"
},
{
"type": "WEB",
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"type": "WEB",
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"type": "WEB",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"type": "WEB",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"type": "WEB",
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58962"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59700"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59710"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59756"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59887"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60022"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60221"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60377"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60493"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60684"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60803"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60810"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60890"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60917"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60921"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60938"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61017"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61043"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61100"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61139"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61184"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61775"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61959"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"type": "WEB",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"type": "WEB",
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"type": "WEB",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/69079"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1030693"
},
{
"type": "WEB",
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"type": "WEB",
"url": "http://www.tenable.com/security/tns-2014-06"
}
],
"schema_version": "1.4.0",
"severity": []
}
FKIE_CVE-2014-3511
Vulnerability from fkie_nvd - Published: 2014-08-13 23:55 - Updated: 2025-04-12 10:46
Severity ?
Summary
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc | ||
| secalert@redhat.com | http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc | ||
| secalert@redhat.com | http://linux.oracle.com/errata/ELSA-2014-1052.html | ||
| secalert@redhat.com | http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html | ||
| secalert@redhat.com | http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html | ||
| secalert@redhat.com | http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=142350350616251&w=2 | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=142495837901899&w=2 | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=142624590206005&w=2 | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=142660345230545&w=2 | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=142791032306609&w=2 | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=143290437727362&w=2 | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=143290522027658&w=2 | ||
| secalert@redhat.com | http://rhn.redhat.com/errata/RHSA-2015-0126.html | ||
| secalert@redhat.com | http://rhn.redhat.com/errata/RHSA-2015-0197.html | ||
| secalert@redhat.com | http://secunia.com/advisories/58962 | ||
| secalert@redhat.com | http://secunia.com/advisories/59700 | ||
| secalert@redhat.com | http://secunia.com/advisories/59710 | ||
| secalert@redhat.com | http://secunia.com/advisories/59756 | ||
| secalert@redhat.com | http://secunia.com/advisories/59887 | ||
| secalert@redhat.com | http://secunia.com/advisories/60022 | ||
| secalert@redhat.com | http://secunia.com/advisories/60221 | ||
| secalert@redhat.com | http://secunia.com/advisories/60377 | ||
| secalert@redhat.com | http://secunia.com/advisories/60493 | ||
| secalert@redhat.com | http://secunia.com/advisories/60684 | ||
| secalert@redhat.com | http://secunia.com/advisories/60803 | ||
| secalert@redhat.com | http://secunia.com/advisories/60810 | ||
| secalert@redhat.com | http://secunia.com/advisories/60890 | ||
| secalert@redhat.com | http://secunia.com/advisories/60917 | ||
| secalert@redhat.com | http://secunia.com/advisories/60921 | ||
| secalert@redhat.com | http://secunia.com/advisories/60938 | ||
| secalert@redhat.com | http://secunia.com/advisories/61017 | ||
| secalert@redhat.com | http://secunia.com/advisories/61043 | ||
| secalert@redhat.com | http://secunia.com/advisories/61100 | ||
| secalert@redhat.com | http://secunia.com/advisories/61139 | ||
| secalert@redhat.com | http://secunia.com/advisories/61184 | ||
| secalert@redhat.com | http://secunia.com/advisories/61775 | ||
| secalert@redhat.com | http://secunia.com/advisories/61959 | ||
| secalert@redhat.com | http://security.gentoo.org/glsa/glsa-201412-39.xml | ||
| secalert@redhat.com | http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html | ||
| secalert@redhat.com | http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240 | ||
| secalert@redhat.com | http://www-01.ibm.com/support/docview.wss?uid=swg21682293 | ||
| secalert@redhat.com | http://www-01.ibm.com/support/docview.wss?uid=swg21683389 | ||
| secalert@redhat.com | http://www-01.ibm.com/support/docview.wss?uid=swg21686997 | ||
| secalert@redhat.com | http://www.arubanetworks.com/support/alerts/aid-08182014.txt | ||
| secalert@redhat.com | http://www.debian.org/security/2014/dsa-2998 | ||
| secalert@redhat.com | http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm | ||
| secalert@redhat.com | http://www.securityfocus.com/bid/69079 | ||
| secalert@redhat.com | http://www.securitytracker.com/id/1030693 | ||
| secalert@redhat.com | http://www.splunk.com/view/SP-CAAANHS | ||
| secalert@redhat.com | http://www.tenable.com/security/tns-2014-06 | ||
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=1127504 | ||
| secalert@redhat.com | https://exchange.xforce.ibmcloud.com/vulnerabilities/95162 | ||
| secalert@redhat.com | https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b | ||
| secalert@redhat.com | https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 | ||
| secalert@redhat.com | https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380 | ||
| secalert@redhat.com | https://kc.mcafee.com/corporate/index?page=content&id=SB10084 | ||
| secalert@redhat.com | https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html | ||
| secalert@redhat.com | https://support.citrix.com/article/CTX216642 | ||
| secalert@redhat.com | https://techzone.ergon.ch/CVE-2014-3511 | ||
| secalert@redhat.com | https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc | ||
| secalert@redhat.com | https://www.openssl.org/news/secadv_20140806.txt | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://linux.oracle.com/errata/ELSA-2014-1052.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=142350350616251&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=142495837901899&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=142624590206005&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=142660345230545&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=142791032306609&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=143290437727362&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=143290522027658&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://rhn.redhat.com/errata/RHSA-2015-0126.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://rhn.redhat.com/errata/RHSA-2015-0197.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/58962 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/59700 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/59710 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/59756 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/59887 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60022 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60221 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60377 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60493 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60684 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60803 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60810 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60890 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60917 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60921 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60938 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61017 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61043 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61100 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61139 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61184 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61775 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/61959 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://security.gentoo.org/glsa/glsa-201412-39.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www-01.ibm.com/support/docview.wss?uid=swg21682293 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www-01.ibm.com/support/docview.wss?uid=swg21683389 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www-01.ibm.com/support/docview.wss?uid=swg21686997 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.arubanetworks.com/support/alerts/aid-08182014.txt | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2014/dsa-2998 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/69079 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1030693 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.splunk.com/view/SP-CAAANHS | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.tenable.com/security/tns-2014-06 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1127504 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/95162 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://kc.mcafee.com/corporate/index?page=content&id=SB10084 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://support.citrix.com/article/CTX216642 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://techzone.ergon.ch/CVE-2014-3511 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.openssl.org/news/secadv_20140806.txt | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| openssl | openssl | 1.0.0 | |
| openssl | openssl | 1.0.0 | |
| openssl | openssl | 1.0.0 | |
| openssl | openssl | 1.0.0 | |
| openssl | openssl | 1.0.0 | |
| openssl | openssl | 1.0.0 | |
| openssl | openssl | 1.0.0a | |
| openssl | openssl | 1.0.0b | |
| openssl | openssl | 1.0.0c | |
| openssl | openssl | 1.0.0d | |
| openssl | openssl | 1.0.0e | |
| openssl | openssl | 1.0.0f | |
| openssl | openssl | 1.0.0g | |
| openssl | openssl | 1.0.0h | |
| openssl | openssl | 1.0.0i | |
| openssl | openssl | 1.0.0j | |
| openssl | openssl | 1.0.0k | |
| openssl | openssl | 1.0.0l | |
| openssl | openssl | 1.0.0m | |
| openssl | openssl | 1.0.1 | |
| openssl | openssl | 1.0.1 | |
| openssl | openssl | 1.0.1 | |
| openssl | openssl | 1.0.1 | |
| openssl | openssl | 1.0.1a | |
| openssl | openssl | 1.0.1b | |
| openssl | openssl | 1.0.1c | |
| openssl | openssl | 1.0.1d | |
| openssl | openssl | 1.0.1e | |
| openssl | openssl | 1.0.1f | |
| openssl | openssl | 1.0.1g | |
| openssl | openssl | 1.0.1h |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2FBD8C92-6138-4274-ACBA-D7D42DAEC5AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*",
"matchCriteriaId": "3A2075BD-6102-4B0F-839A-836E9585F43B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*",
"matchCriteriaId": "2A2FA09E-2BF7-4968-B62D-00DA57F81EA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*",
"matchCriteriaId": "F02E634E-1E3D-4E44-BADA-76F92483A732",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*",
"matchCriteriaId": "FCC2B07A-49EF-411F-8A4D-89435E22B043",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*",
"matchCriteriaId": "7E9480D6-3B6A-4C41-B8C1-C3F945040772",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*",
"matchCriteriaId": "10FF0A06-DA61-4250-B083-67E55E362677",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*",
"matchCriteriaId": "8A6BA453-C150-4159-B80B-5465EFF83F11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*",
"matchCriteriaId": "638A2E69-8AB6-4FEA-852A-FEF16A500C1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*",
"matchCriteriaId": "56C47D3A-B99D-401D-B6B8-1194B2DB4809",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:*",
"matchCriteriaId": "08355B10-E004-4BE6-A5AE-4D428810580B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:*",
"matchCriteriaId": "738BCFDC-1C49-4774-95AE-E099F707DEF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:*",
"matchCriteriaId": "D4B242C0-D27D-4644-AD19-5ACB853C9DC2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:*",
"matchCriteriaId": "8DC683F2-4346-4E5E-A8D7-67B4F4D7827B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:*",
"matchCriteriaId": "764B7D38-BC1B-47DB-B1DF-D092BDA4BFCB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0j:*:*:*:*:*:*:*",
"matchCriteriaId": "6604E7BE-9F9B-444D-A63A-F65D1CFDF3BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0k:*:*:*:*:*:*:*",
"matchCriteriaId": "132B9217-B0E0-4E3E-9096-162AA28E158E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0l:*:*:*:*:*:*:*",
"matchCriteriaId": "7619F9A0-9054-4217-93D1-3EA64876C5B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.0m:*:*:*:*:*:*:*",
"matchCriteriaId": "6D82C405-17E2-4DF1-8DF5-315BD5A41595",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2D1C00C0-C77E-4255-9ECA-20F2673C7366",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*",
"matchCriteriaId": "21F16D65-8A46-4AC7-8970-73AB700035FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*",
"matchCriteriaId": "92F393FF-7E6F-4671-BFBF-060162E12659",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*",
"matchCriteriaId": "E1B85A09-CF8D-409D-966E-168F9959F6F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "3A66E6CF-39CF-412E-8EF0-8E10BA21B4A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*",
"matchCriteriaId": "C684FB18-FDDC-4BED-A28C-C23EE6CD0094",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*",
"matchCriteriaId": "A74A79A7-4FAF-4C81-8622-050008B96AE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*",
"matchCriteriaId": "CEDACCB9-8D61-49EE-9957-9E58BC7BB031",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*",
"matchCriteriaId": "4993DD56-F9E3-4AC8-AC3E-BF204B950DEC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*",
"matchCriteriaId": "E884B241-F9C3-44F8-A420-DE65F5F3D660",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*",
"matchCriteriaId": "3A383620-B4F7-44A7-85DA-A4FF2E115D80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*",
"matchCriteriaId": "5F0C6812-F455-49CF-B29B-9AC00306DA43",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue."
},
{
"lang": "es",
"value": "La funci\u00f3n ssl23_get_client_hello en s23_srvr.c en OpenSSL 1.0.1 anterior a 1.0.1i permite a atacantes man-in-the-middle forzar el uso de TLS 1.0 mediante la provocaci\u00f3n de la fragmentaci\u00f3n de mensajes ClientHello comunicaciones entre un cliente y el servidor que ambos soportan versiones TLS posteriores, relacionado con un problema de \u0027degradaci\u00f3n de protocolo\u0027."
}
],
"id": "CVE-2014-3511",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2014-08-13T23:55:07.623",
"references": [
{
"source": "secalert@redhat.com",
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"source": "secalert@redhat.com",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"source": "secalert@redhat.com",
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"source": "secalert@redhat.com",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/58962"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/59700"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/59710"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/59756"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/59887"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60022"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60221"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60377"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60493"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60684"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60803"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60810"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60890"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60917"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60921"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/60938"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61017"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61043"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61100"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61139"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61184"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61775"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/61959"
},
{
"source": "secalert@redhat.com",
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"source": "secalert@redhat.com",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"source": "secalert@redhat.com",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"source": "secalert@redhat.com",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"source": "secalert@redhat.com",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"source": "secalert@redhat.com",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"source": "secalert@redhat.com",
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"source": "secalert@redhat.com",
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"source": "secalert@redhat.com",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/69079"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securitytracker.com/id/1030693"
},
{
"source": "secalert@redhat.com",
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"source": "secalert@redhat.com",
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"source": "secalert@redhat.com",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"source": "secalert@redhat.com",
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"source": "secalert@redhat.com",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"source": "secalert@redhat.com",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"source": "secalert@redhat.com",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"source": "secalert@redhat.com",
"url": "https://support.citrix.com/article/CTX216642"
},
{
"source": "secalert@redhat.com",
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"source": "secalert@redhat.com",
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://linux.oracle.com/errata/ELSA-2014-1052.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0197.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/58962"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59700"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59710"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59756"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59887"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60022"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60221"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60377"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60493"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60684"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60803"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60810"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60890"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60917"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60921"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60938"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61017"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61043"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61100"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61139"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61184"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61775"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/61959"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/69079"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1030693"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.splunk.com/view/SP-CAAANHS"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10084"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.citrix.com/article/CTX216642"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://techzone.ergon.ch/CVE-2014-3511"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.openssl.org/news/secadv_20140806.txt"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
WID-SEC-W-2023-0498
Vulnerability from csaf_certbund - Published: 2014-08-06 22:00 - Updated: 2023-02-27 23:00Summary
OpenSSL: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
OpenSSL ist eine im Quelltext frei verfügbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuführen, Informationen offenzulegen und eine Protokoll Downgrade Attacke durchzuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- Sonstiges
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "OpenSSL ist eine im Quelltext frei verf\u00fcgbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, Informationen offenzulegen und eine Protokoll Downgrade Attacke durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows\n- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-0498 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2014/wid-sec-w-2023-0498.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-0498 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0498"
},
{
"category": "external",
"summary": "IBM Security Bulletin 690129 vom 2023-02-28",
"url": "https://www.ibm.com/support/pages/node/690129"
},
{
"category": "external",
"summary": "OpenSSL Security Advisory vom 2014-08-06",
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-2308-1 vom 2014-08-07",
"url": "http://www.ubuntu.com/usn/usn-2308-1/"
},
{
"category": "external",
"summary": "OpenVPN 2.3.4 Release Notes",
"url": "http://openvpn.net/index.php/open-source/downloads.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2014:1053-1 vom 2014-08-13",
"url": "http://rhn.redhat.com/errata/RHSA-2014-1053.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2014:1052-1 vom 2014-08-13",
"url": "http://rhn.redhat.com/errata/RHSA-2014-1052.html"
},
{
"category": "external",
"summary": "CentOS Errata and Security Advisory CESA-2014:1053 vom 2014-08-13",
"url": "http://centos.distrosfaqs.org/centos-announce/cesa-20141053-moderate-centos-5-openssl-update/"
},
{
"category": "external",
"summary": "CentOS Errata and Security Advisory CESA-2014:1052 vom 2014-08-13",
"url": "http://centos.distrosfaqs.org/centos-announce/cesa-20141052-moderate-centos-6-openssl-update/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2014:1054-1 vom 2014-08-14",
"url": "http://rhn.redhat.com/errata/RHSA-2014-1054.html"
},
{
"category": "external",
"summary": "HP Security Bulletin HPSBUX03095 SSRT101674 rev.1 vom 2014-08-15",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c04404655"
},
{
"category": "external",
"summary": "SUSE Security update for openssl1 (9599)",
"url": "http://download.novell.com/patch/finder/?keywords=f511564183b6f13c2dc78cf5451408d0"
},
{
"category": "external",
"summary": "SUSE Security update for OpenSSL (9598)",
"url": "http://download.novell.com/patch/finder/?keywords=30032dcfaed48d7e5c0c3457c07419da"
},
{
"category": "external",
"summary": "NetBSD Security Advisory 2014-008 vom 2014-08-27",
"url": "http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc"
},
{
"category": "external",
"summary": "WinSCP Versionshistorie f\u00fcr 5.5.5 vom 2014-08-21",
"url": "http://winscp.net/eng/docs/history#5.5.5"
},
{
"category": "external",
"summary": "F5 Security Advisory SOL15573 vom 2014-09-05",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15573.html?ref=rss"
},
{
"category": "external",
"summary": "F5 Security Advisory SOL15568 vom 2014-09-05",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15568.html?ref=rss"
},
{
"category": "external",
"summary": "F5 Security Advisory SOL15564 vom 2014-09-05",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html?ref=rss"
},
{
"category": "external",
"summary": "F5 Security Advisory SOL15571 vom 2014-09-05",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15571.html?ref=rss"
},
{
"category": "external",
"summary": "FreeBSD Security Advisory FreeBSD-SA-14:18.openssl vom 2014-09-09",
"url": "http://security.freebsd.org/advisories/FreeBSD-SA-14:18.openssl.asc"
},
{
"category": "external",
"summary": "HP SECURITY BULLETIN Document ID: c04426586",
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04426586"
},
{
"category": "external",
"summary": "RedHat Security Advisory RHSA-2014:1256-1",
"url": "https://rhn.redhat.com/errata/RHSA-2014-1256.html"
},
{
"category": "external",
"summary": "IBM Security Advisory vom 2014-09-09",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"category": "external",
"summary": "SUSE Security update for OpenSSL (9662) vom 2014-09-09",
"url": "https://download.suse.com/patch/finder/?keywords=d131eebfce5c601b41e006539b73bcb9"
},
{
"category": "external",
"summary": "SUSE Security update for OpenSSL (8933) vom 2014-09-09",
"url": "https://download.suse.com/patch/finder/?keywords=a13af464a610cda0eae18606907ad3af"
},
{
"category": "external",
"summary": "SUSE Security update for OpenSSL (8935) vom 2014-09-09",
"url": "https://download.suse.com/patch/finder/?keywords=9b67b5e9df54ba01bdf516a4768dfc90"
},
{
"category": "external",
"summary": "SUSE Security update for OpenSSL (9663) vom 2014-09-09",
"url": "https://download.suse.com/patch/finder/?keywords=99670be4c48bf7d4b638d26f459ded32"
},
{
"category": "external",
"summary": "Oracle Third Party Vulnerability Resolution Blog",
"url": "https://blogs.oracle.com/sunsecurity/entry/cve_2014_3505_denial_of"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA 201412-39 vom 2014-12-25",
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"category": "external",
"summary": "sa85 vom 2015-01-14",
"url": "https://kb.bluecoat.com/security-advisory/sa85"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2015:0126-1 vom 2015-02-04",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0126.html"
},
{
"category": "external",
"summary": "HP Security Bulletin Document ID: c04512909",
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04512909"
},
{
"category": "external",
"summary": "HP Security Bulletin HPSBMU03260 rev.1",
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04571379"
},
{
"category": "external",
"summary": "HP Security Bulletin Document ID: c04570627",
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04570627"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2015:0578-1 vom 2015-03-23",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150578-1.html"
},
{
"category": "external",
"summary": "HP Security Bulletin HPSBMU03263",
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04574073"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2014:1104-1 vom 2016-01-22",
"url": "https://www.suse.com/support/update/announcement/2014/suse-su-20141104-1.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2019-4581 vom 2019-03-13",
"url": "http://linux.oracle.com/errata/ELSA-2019-4581.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2019-4747 vom 2019-08-16",
"url": "http://linux.oracle.com/errata/ELSA-2019-4747.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2021-9150 vom 2021-04-01",
"url": "https://linux.oracle.com/errata/ELSA-2021-9150.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2022-9272 vom 2022-04-08",
"url": "https://linux.oracle.com/errata/ELSA-2022-9272.html"
}
],
"source_lang": "en-US",
"title": "OpenSSL: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2023-02-27T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:44:58.500+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-0498",
"initial_release_date": "2014-08-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2014-08-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2014-08-06T22:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-07T22:00:00.000+00:00",
"number": "3",
"summary": "New remediations available"
},
{
"date": "2014-08-07T22:00:00.000+00:00",
"number": "4",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-07T22:00:00.000+00:00",
"number": "5",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-12T22:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2014-08-12T22:00:00.000+00:00",
"number": "7",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-13T22:00:00.000+00:00",
"number": "8",
"summary": "New remediations available"
},
{
"date": "2014-08-13T22:00:00.000+00:00",
"number": "9",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-13T22:00:00.000+00:00",
"number": "10",
"summary": "New remediations available"
},
{
"date": "2014-08-13T22:00:00.000+00:00",
"number": "11",
"summary": "New remediations available"
},
{
"date": "2014-08-13T22:00:00.000+00:00",
"number": "12",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-14T22:00:00.000+00:00",
"number": "13",
"summary": "New remediations available"
},
{
"date": "2014-08-14T22:00:00.000+00:00",
"number": "14",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-18T22:00:00.000+00:00",
"number": "15",
"summary": "New remediations available"
},
{
"date": "2014-08-18T22:00:00.000+00:00",
"number": "16",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-18T22:00:00.000+00:00",
"number": "17",
"summary": "New remediations available"
},
{
"date": "2014-08-18T22:00:00.000+00:00",
"number": "18",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-20T22:00:00.000+00:00",
"number": "19",
"summary": "New remediations available"
},
{
"date": "2014-08-20T22:00:00.000+00:00",
"number": "20",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-24T22:00:00.000+00:00",
"number": "21",
"summary": "New remediations available"
},
{
"date": "2014-08-24T22:00:00.000+00:00",
"number": "22",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-08-27T22:00:00.000+00:00",
"number": "23",
"summary": "New remediations available"
},
{
"date": "2014-08-27T22:00:00.000+00:00",
"number": "24",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "25",
"summary": "New remediations available"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "26",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "27",
"summary": "New remediations available"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "28",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "29",
"summary": "New remediations available"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "30",
"summary": "New remediations available"
},
{
"date": "2014-09-07T22:00:00.000+00:00",
"number": "31",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "32",
"summary": "New remediations available"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "33",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "34",
"summary": "New remediations available"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "35",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "36",
"summary": "New remediations available"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "37",
"summary": "New remediations available"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "38",
"summary": "New remediations available"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "39",
"summary": "New remediations available"
},
{
"date": "2014-09-09T22:00:00.000+00:00",
"number": "40",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-14T22:00:00.000+00:00",
"number": "41",
"summary": "New remediations available"
},
{
"date": "2014-09-14T22:00:00.000+00:00",
"number": "42",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-09-17T22:00:00.000+00:00",
"number": "43",
"summary": "New remediations available"
},
{
"date": "2014-09-17T22:00:00.000+00:00",
"number": "44",
"summary": "New remediations available"
},
{
"date": "2014-09-17T22:00:00.000+00:00",
"number": "45",
"summary": "Version nicht vorhanden"
},
{
"date": "2014-12-28T23:00:00.000+00:00",
"number": "46",
"summary": "New remediations available"
},
{
"date": "2015-01-14T23:00:00.000+00:00",
"number": "47",
"summary": "New remediations available"
},
{
"date": "2015-02-04T23:00:00.000+00:00",
"number": "48",
"summary": "New remediations available"
},
{
"date": "2015-02-04T23:00:00.000+00:00",
"number": "49",
"summary": "Version nicht vorhanden"
},
{
"date": "2015-02-04T23:00:00.000+00:00",
"number": "50",
"summary": "Version nicht vorhanden"
},
{
"date": "2015-02-09T23:00:00.000+00:00",
"number": "51",
"summary": "New remediations available"
},
{
"date": "2015-02-09T23:00:00.000+00:00",
"number": "52",
"summary": "Version nicht vorhanden"
},
{
"date": "2015-02-26T23:00:00.000+00:00",
"number": "53",
"summary": "New remediations available"
},
{
"date": "2015-02-26T23:00:00.000+00:00",
"number": "54",
"summary": "Version nicht vorhanden"
},
{
"date": "2015-02-26T23:00:00.000+00:00",
"number": "55",
"summary": "Version nicht vorhanden"
},
{
"date": "2015-03-15T23:00:00.000+00:00",
"number": "56",
"summary": "New remediations available"
},
{
"date": "2015-03-23T23:00:00.000+00:00",
"number": "57",
"summary": "New remediations available"
},
{
"date": "2015-03-24T23:00:00.000+00:00",
"number": "58",
"summary": "New remediations available"
},
{
"date": "2015-03-24T23:00:00.000+00:00",
"number": "59",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-01-24T23:00:00.000+00:00",
"number": "60",
"summary": "New remediations available"
},
{
"date": "2019-03-13T23:00:00.000+00:00",
"number": "61",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2019-08-18T22:00:00.000+00:00",
"number": "62",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2021-03-31T22:00:00.000+00:00",
"number": "63",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2022-04-10T22:00:00.000+00:00",
"number": "64",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2023-02-27T23:00:00.000+00:00",
"number": "65",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "65"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "F5 ARX 6.0.0 - 6.4.0",
"product": {
"name": "F5 ARX 6.0.0 - 6.4.0",
"product_id": "T002411",
"product_identification_helper": {
"cpe": "cpe:/a:f5:arx:6.4.0"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP Access Policy Manager 10.1.0 - 10.2.4",
"product": {
"name": "F5 BIG-IP Access Policy Manager 10.1.0 - 10.2.4",
"product_id": "T000515",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_access_policy_manager:10.2.4"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Access Policy Manager 11.0.0 - 11.3.0",
"product": {
"name": "F5 BIG-IP Access Policy Manager 11.0.0 - 11.3.0",
"product_id": "T000516",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_access_policy_manager:11.3.0"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Access Policy Manager 11.5.0 - 11.6.0",
"product": {
"name": "F5 BIG-IP Access Policy Manager 11.5.0 - 11.6.0",
"product_id": "T003682",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_access_policy_manager:11.6.0"
}
}
}
],
"category": "product_name",
"name": "BIG-IP Access Policy Manager"
},
{
"category": "product_name",
"name": "F5 BIG-IP Analytics 11.0.0 - 11.3.0",
"product": {
"name": "F5 BIG-IP Analytics 11.0.0 - 11.3.0",
"product_id": "T000542",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_analytics:11.3.0"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP Application Security Manager 10.0.0 - 10.2.4",
"product": {
"name": "F5 BIG-IP Application Security Manager 10.0.0 - 10.2.4",
"product_id": "T000548",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_application_security_manager:10.2.4"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Application Security Manager 11.0.0 - 11.3.0",
"product": {
"name": "F5 BIG-IP Application Security Manager 11.0.0 - 11.3.0",
"product_id": "T000549",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_application_security_manager:11.3.0"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Application Security Manager 11.5.0 - 11.6.0",
"product": {
"name": "F5 BIG-IP Application Security Manager 11.5.0 - 11.6.0",
"product_id": "T003684",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_application_security_manager:11.6.0"
}
}
}
],
"category": "product_name",
"name": "BIG-IP Application Security Manager"
},
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP Edge Gateway 11.0.0 - 11.3.0",
"product": {
"name": "F5 BIG-IP Edge Gateway 11.0.0 - 11.3.0",
"product_id": "T000521",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_edge_gateway:11.3.0"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Edge Gateway 10.1.0 - 10.2.4",
"product": {
"name": "F5 BIG-IP Edge Gateway 10.1.0 - 10.2.4",
"product_id": "T000552",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_edge_gateway:10.2.4"
}
}
}
],
"category": "product_name",
"name": "BIG-IP Edge Gateway"
},
{
"category": "product_name",
"name": "F5 BIG-IP Global Traffic Manager 11.5.0 - 11.6.0",
"product": {
"name": "F5 BIG-IP Global Traffic Manager 11.5.0 - 11.6.0",
"product_id": "T003686",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_global_traffic_manager:11.6.0"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Link Controller 11.5.0 - 11.6.0",
"product": {
"name": "F5 BIG-IP Link Controller 11.5.0 - 11.6.0",
"product_id": "T003687",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_link_controller:11.6.0"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP Local Traffic Manager 10.0.0 - 10.2.4",
"product": {
"name": "F5 BIG-IP Local Traffic Manager 10.0.0 - 10.2.4",
"product_id": "T000512",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_local_traffic_manager:10.2.4"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Local Traffic Manager 11.0.0 - 11.3.0",
"product": {
"name": "F5 BIG-IP Local Traffic Manager 11.0.0 - 11.3.0",
"product_id": "T000513",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_local_traffic_manager:11.3.0"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Local Traffic Manager 11.5.0 - 11.6.0",
"product": {
"name": "F5 BIG-IP Local Traffic Manager 11.5.0 - 11.6.0",
"product_id": "T003681",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip_local_traffic_manager:11.6.0"
}
}
}
],
"category": "product_name",
"name": "BIG-IP Local Traffic Manager"
},
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP Protocol Security Manager 11.0.0 - 11.3.0",
"product": {
"name": "F5 BIG-IP Protocol Security Manager 11.0.0 - 11.3.0",
"product_id": "T001409",
"product_identification_helper": {
"cpe": "cpe:/a:f5:protocol_security_manager:11.3.0"
}
}
},
{
"category": "product_name",
"name": "F5 BIG-IP Protocol Security Manager 10.0.0 - 10.2.4",
"product": {
"name": "F5 BIG-IP Protocol Security Manager 10.0.0 - 10.2.4",
"product_id": "T001410",
"product_identification_helper": {
"cpe": "cpe:/a:f5:protocol_security_manager:10.2.4"
}
}
}
],
"category": "product_name",
"name": "BIG-IP Protocol Security Manager"
},
{
"branches": [
{
"category": "product_name",
"name": "F5 WebAccelerator 10.0.0 - 10.2.4",
"product": {
"name": "F5 WebAccelerator 10.0.0 - 10.2.4",
"product_id": "T001411",
"product_identification_helper": {
"cpe": "cpe:/h:f5:big-ip_webaccelerator:10.2.4"
}
}
},
{
"category": "product_name",
"name": "F5 WebAccelerator 11.0.0 - 11.3.0",
"product": {
"name": "F5 WebAccelerator 11.0.0 - 11.3.0",
"product_id": "T001412",
"product_identification_helper": {
"cpe": "cpe:/h:f5:big-ip_webaccelerator:11.3.0"
}
}
}
],
"category": "product_name",
"name": "WebAccelerator"
}
],
"category": "vendor",
"name": "F5"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "FreeBSD Project FreeBSD OS 9.1",
"product": {
"name": "FreeBSD Project FreeBSD OS 9.1",
"product_id": "194535",
"product_identification_helper": {
"cpe": "cpe:/o:freebsd:freebsd:9.1"
}
}
},
{
"category": "product_name",
"name": "FreeBSD Project FreeBSD OS 8.4",
"product": {
"name": "FreeBSD Project FreeBSD OS 8.4",
"product_id": "202078",
"product_identification_helper": {
"cpe": "cpe:/o:freebsd:freebsd:8.4"
}
}
},
{
"category": "product_name",
"name": "FreeBSD Project FreeBSD OS 9.2",
"product": {
"name": "FreeBSD Project FreeBSD OS 9.2",
"product_id": "T003389",
"product_identification_helper": {
"cpe": "cpe:/o:freebsd:freebsd:9.2"
}
}
},
{
"category": "product_name",
"name": "FreeBSD Project FreeBSD OS 9.3",
"product": {
"name": "FreeBSD Project FreeBSD OS 9.3",
"product_id": "T003390",
"product_identification_helper": {
"cpe": "cpe:/o:freebsd:freebsd:9.3"
}
}
},
{
"category": "product_name",
"name": "FreeBSD Project FreeBSD OS 10.0",
"product": {
"name": "FreeBSD Project FreeBSD OS 10.0",
"product_id": "T003391",
"product_identification_helper": {
"cpe": "cpe:/o:freebsd:freebsd:10.0"
}
}
}
],
"category": "product_name",
"name": "FreeBSD OS"
}
],
"category": "vendor",
"name": "FreeBSD Project"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "HPE HP-UX B.11.11",
"product": {
"name": "HPE HP-UX B.11.11",
"product_id": "T003645",
"product_identification_helper": {
"cpe": "cpe:/o:hp:hp-ux:11.11:b"
}
}
},
{
"category": "product_name",
"name": "HPE HP-UX B.11.23",
"product": {
"name": "HPE HP-UX B.11.23",
"product_id": "T003646",
"product_identification_helper": {
"cpe": "cpe:/o:hp:hp-ux:11.23:b"
}
}
},
{
"category": "product_name",
"name": "HPE HP-UX B.11.31",
"product": {
"name": "HPE HP-UX B.11.31",
"product_id": "T003647",
"product_identification_helper": {
"cpe": "cpe:/o:hp:hp-ux:11.31:b"
}
}
}
],
"category": "product_name",
"name": "HP-UX"
},
{
"category": "product_name",
"name": "HPE Insight Control",
"product": {
"name": "HPE Insight Control",
"product_id": "253293",
"product_identification_helper": {
"cpe": "cpe:/a:hp:insight_control_server_deployment:-"
}
}
},
{
"category": "product_name",
"name": "HPE OpenVMS",
"product": {
"name": "HPE OpenVMS",
"product_id": "64187",
"product_identification_helper": {
"cpe": "cpe:/o:hp:openvms:-"
}
}
},
{
"category": "product_name",
"name": "HPE Service Manager",
"product": {
"name": "HPE Service Manager",
"product_id": "T004483",
"product_identification_helper": {
"cpe": "cpe:/a:hp:service_manager:-"
}
}
},
{
"category": "product_name",
"name": "HP System Management Homepage",
"product": {
"name": "HP System Management Homepage",
"product_id": "4995",
"product_identification_helper": {
"cpe": "cpe:/a:hp:system_management_homepage:-"
}
}
}
],
"category": "vendor",
"name": "HPE"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM AIX 7.1",
"product": {
"name": "IBM AIX 7.1",
"product_id": "153340",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.1"
}
}
},
{
"category": "product_name",
"name": "IBM AIX 5.3",
"product": {
"name": "IBM AIX 5.3",
"product_id": "30418",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:5.3"
}
}
},
{
"category": "product_name",
"name": "IBM AIX 6.1",
"product": {
"name": "IBM AIX 6.1",
"product_id": "73182",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:6.1"
}
}
}
],
"category": "product_name",
"name": "AIX"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM FlashSystem 710",
"product": {
"name": "IBM FlashSystem 710",
"product_id": "T026541",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:flashsystem:710"
}
}
},
{
"category": "product_name",
"name": "IBM FlashSystem 810",
"product": {
"name": "IBM FlashSystem 810",
"product_id": "T026542",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:flashsystem:810"
}
}
},
{
"category": "product_name",
"name": "IBM FlashSystem 720",
"product": {
"name": "IBM FlashSystem 720",
"product_id": "T026543",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:flashsystem:720"
}
}
},
{
"category": "product_name",
"name": "IBM FlashSystem 820",
"product": {
"name": "IBM FlashSystem 820",
"product_id": "T026544",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:flashsystem:820"
}
}
}
],
"category": "product_name",
"name": "FlashSystem"
},
{
"category": "product_name",
"name": "IBM VIOS 2.2.x",
"product": {
"name": "IBM VIOS 2.2.x",
"product_id": "T002859",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:vios:2.2"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "NetBSD Foundation NetBSD OS",
"product": {
"name": "NetBSD Foundation NetBSD OS",
"product_id": "7660",
"product_identification_helper": {
"cpe": "cpe:/o:netbsd:netbsd:-"
}
}
}
],
"category": "vendor",
"name": "NetBSD Foundation"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source CentOS 6",
"product": {
"name": "Open Source CentOS 6",
"product_id": "160056",
"product_identification_helper": {
"cpe": "cpe:/o:centos:centos:6"
}
}
},
{
"category": "product_name",
"name": "Open Source CentOS 7",
"product": {
"name": "Open Source CentOS 7",
"product_id": "T003633",
"product_identification_helper": {
"cpe": "cpe:/o:centos:centos:7"
}
}
}
],
"category": "product_name",
"name": "CentOS"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source OpenSSL 1.0.0",
"product": {
"name": "Open Source OpenSSL 1.0.0",
"product_id": "126467",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:1.0.0"
}
}
},
{
"category": "product_name",
"name": "Open Source OpenSSL 1.0.1",
"product": {
"name": "Open Source OpenSSL 1.0.1",
"product_id": "T002966",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:1.0.1"
}
}
},
{
"category": "product_name",
"name": "Open Source OpenSSL 0.9.8",
"product": {
"name": "Open Source OpenSSL 0.9.8",
"product_id": "T003564",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:0.9.8"
}
}
}
],
"category": "product_name",
"name": "OpenSSL"
},
{
"category": "product_name",
"name": "Open Source OpenVPN \u003c 2.3.4",
"product": {
"name": "Open Source OpenVPN \u003c 2.3.4",
"product_id": "T003615",
"product_identification_helper": {
"cpe": "cpe:/a:openvpn:openvpn:2.3.4"
}
}
},
{
"category": "product_name",
"name": "Open Source WinSCP \u003c 5.5.5",
"product": {
"name": "Open Source WinSCP \u003c 5.5.5",
"product_id": "T003680",
"product_identification_helper": {
"cpe": "cpe:/a:winscp:winscp:5.5.5"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Solaris 10",
"product": {
"name": "Oracle Solaris 10",
"product_id": "T000300",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:solaris:10"
}
}
},
{
"category": "product_name",
"name": "Oracle Solaris 11.2",
"product": {
"name": "Oracle Solaris 11.2",
"product_id": "T002989",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:solaris:11.2"
}
}
}
],
"category": "product_name",
"name": "Solaris"
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server 5",
"product": {
"name": "Red Hat Enterprise Linux Server 5",
"product_id": "74289",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server 6",
"product": {
"name": "Red Hat Enterprise Linux Server 6",
"product_id": "T000343",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6:server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS 6.5.z",
"product": {
"name": "Red Hat Enterprise Linux Server EUS 6.5.z",
"product_id": "T002243",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6.5.z:server:eus"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS 6.5",
"product": {
"name": "Red Hat Enterprise Linux Server AUS 6.5",
"product_id": "T002517",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6.5:server:aus"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server 7",
"product": {
"name": "Red Hat Enterprise Linux Server 7",
"product_id": "T003550",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop 5",
"product": {
"name": "Red Hat Enterprise Linux Desktop 5",
"product_id": "T000180",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_desktop:5"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop 6",
"product": {
"name": "Red Hat Enterprise Linux Desktop 6",
"product_id": "T000223",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_desktop:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop 7",
"product": {
"name": "Red Hat Enterprise Linux Desktop 7",
"product_id": "T003548",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_desktop:7"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux Desktop"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node 6",
"product": {
"name": "Red Hat Enterprise Linux HPC Node 6",
"product_id": "T001927",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_hpc_node:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node 7",
"product": {
"name": "Red Hat Enterprise Linux HPC Node 7",
"product_id": "T003549",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_hpc_node:7"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux HPC Node"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation 6",
"product": {
"name": "Red Hat Enterprise Linux Workstation 6",
"product_id": "T000396",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_workstation:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation 5",
"product": {
"name": "Red Hat Enterprise Linux Workstation 5",
"product_id": "T000622",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_workstation:5"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation 7",
"product": {
"name": "Red Hat Enterprise Linux Workstation 7",
"product_id": "T003565",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_workstation:7"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux Workstation"
},
{
"category": "product_name",
"name": "Red Hat Enterprise Virtualization",
"product": {
"name": "Red Hat Enterprise Virtualization",
"product_id": "T003307",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_virtualization:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat Storage 2.1",
"product": {
"name": "Red Hat Storage 2.1",
"product_id": "T002362",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:storage:2.1"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "T002224",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_desktop:11:sp3"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "T002223",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_server:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 10 SP3 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 10 SP3 LTSS",
"product_id": "T002667",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_server:10:sp3:ltss"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 10 SP4 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 10 SP4 LTSS",
"product_id": "T002668",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_server:10:sp4:ltss"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP2 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP2 LTSS",
"product_id": "T002670",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_server:11:sp2:ltss"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3 VMware",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3 VMware",
"product_id": "T003321",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_server:11_sp3_for_vmware"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP1 LTSSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP1 LTSSS",
"product_id": "T003351",
"product_identification_helper": {
"cpe": "cpe:/o:suse:linux_enterprise_server:11_sp1_ltss"
}
}
}
],
"category": "product_name",
"name": "Linux Enterprise Server"
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3505",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3505"
},
{
"cve": "CVE-2014-3506",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3506"
},
{
"cve": "CVE-2014-3507",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3507"
},
{
"cve": "CVE-2014-3508",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3508"
},
{
"cve": "CVE-2014-3509",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3509"
},
{
"cve": "CVE-2014-3510",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3510"
},
{
"cve": "CVE-2014-3511",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3511"
},
{
"cve": "CVE-2014-3512",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-3512"
},
{
"cve": "CVE-2014-5139",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in OpenSSL. Ein Angreifer kann diese Schwachstellen die unter anderem auf Null Pointer Dereferenzierungen, Race Conditions, Double Free Zust\u00e4nden und Puffer\u00fcberl\u00e4ufen beruhen ausnutzen um Informationen offenzulegen und Denial of Service Zust\u00e4nde zu verursachen. Eine Schwachstelle macht es m\u00f6glich ein Protokoll Downgrade zu verursachen, so dass TLS 1.0 verwendet wird, obwohl sowohl Server als auch Client h\u00f6here Protokollversionen nutzen k\u00f6nnten."
}
],
"product_status": {
"known_affected": [
"T003389",
"T003548",
"T003307",
"T003549",
"T004914",
"T002859",
"73182",
"T000516",
"T000515",
"194535",
"T000513",
"T000512",
"T026544",
"T000552",
"T002411",
"T026543",
"T000396",
"T026542",
"T026541",
"153340",
"T000180",
"74289",
"253293",
"T002966",
"T000549",
"T000548",
"2951",
"T000622",
"T000223",
"T000300",
"T000542",
"T000343",
"30418",
"T002243",
"T002362",
"7660",
"T003681",
"T002670",
"T003682",
"T003321",
"T003684",
"T003564",
"T003565",
"T003686",
"T003687",
"T003645",
"T003646",
"T003647",
"T002517",
"202078",
"126467",
"T003351",
"T003550",
"64187",
"T003633",
"T002667",
"160056",
"T002668",
"T002989",
"T001927",
"T001409",
"T000126",
"T000521",
"T001412",
"T001411",
"4995",
"T001410",
"T002224",
"T002223",
"T003390",
"T003391",
"T004483"
]
},
"release_date": "2014-08-06T22:00:00.000+00:00",
"title": "CVE-2014-5139"
}
]
}
VAR-201408-0081
Vulnerability from variot - Updated: 2024-07-23 21:31The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a "protocol downgrade" issue. OpenSSL is prone to security-bypass vulnerability. Successfully exploiting these issues may allow attackers to perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks. OpenSSL 1.0.1 versions prior to 1.0.1i are vulnerable. ============================================================================ Ubuntu Security Notice USN-2308-1 August 07, 2014
openssl vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS
Summary:
Several security issues were fixed in OpenSSL.
Software Description: - openssl: Secure Socket Layer (SSL) cryptographic library and tools
Details:
Adam Langley and Wan-Teh Chang discovered that OpenSSL incorrectly handled certain DTLS packets. (CVE-2014-3506)
Adam Langley discovered that OpenSSL incorrectly handled memory when processing DTLS fragments. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. When OpenSSL is used with certain applications, an attacker may use this issue to possibly gain access to sensitive information. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2014-5139)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04 LTS: libssl1.0.0 1.0.1f-1ubuntu2.5
Ubuntu 12.04 LTS: libssl1.0.0 1.0.1-4ubuntu5.17
Ubuntu 10.04 LTS: libssl0.9.8 0.9.8k-7ubuntu8.20
After a standard system update you need to reboot your computer to make all the necessary changes. OpenSSL Security Advisory [6 Aug 2014] ========================================
Information leak in pretty printing functions (CVE-2014-3508)
A flaw in OBJ_obj2txt may cause pretty printing functions such as X509_name_oneline, X509_name_print_ex et al. to leak some information from the stack. Applications may be affected if they echo pretty printing output to the attacker. OpenSSL SSL/TLS clients and servers themselves are not affected.
OpenSSL 0.9.8 users should upgrade to 0.9.8zb OpenSSL 1.0.0 users should upgrade to 1.0.0n. OpenSSL 1.0.1 users should upgrade to 1.0.1i.
Thanks to Ivan Fratric (Google) for discovering this issue. This issue was reported to OpenSSL on 19th June 2014.
The fix was developed by Emilia Käsper and Stephen Henson of the OpenSSL development team.
Crash with SRP ciphersuite in Server Hello message (CVE-2014-5139)
The issue affects OpenSSL clients and allows a malicious server to crash the client with a null pointer dereference (read) by specifying an SRP ciphersuite even though it was not properly negotiated with the client. This can be exploited through a Denial of Service attack.
OpenSSL 1.0.1 SSL/TLS client users should upgrade to 1.0.1i.
Thanks to Joonas Kuorilehto and Riku Hietamäki (Codenomicon) for discovering and researching this issue. This issue was reported to OpenSSL on 2nd July 2014.
The fix was developed by Stephen Henson of the OpenSSL core team.
Race condition in ssl_parse_serverhello_tlsext (CVE-2014-3509)
If a multithreaded client connects to a malicious server using a resumed session and the server sends an ec point format extension it could write up to 255 bytes to freed memory.
OpenSSL 1.0.0 SSL/TLS client users should upgrade to 1.0.0n. OpenSSL 1.0.1 SSL/TLS client users should upgrade to 1.0.1i.
Thanks to Gabor Tyukasz (LogMeIn Inc) for discovering and researching this issue. This issue was reported to OpenSSL on 8th July 2014.
The fix was developed by Gabor Tyukasz.
Double Free when processing DTLS packets (CVE-2014-3505)
An attacker can force an error condition which causes openssl to crash whilst processing DTLS packets due to memory being freed twice. This can be exploited through a Denial of Service attack.
OpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zb OpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n. OpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i.
Thanks to Adam Langley and Wan-Teh Chang (Google) for discovering and researching this issue. This issue was reported to OpenSSL on 6th June 2014.
The fix was developed by Adam Langley.
DTLS memory exhaustion (CVE-2014-3506)
An attacker can force openssl to consume large amounts of memory whilst processing DTLS handshake messages. This can be exploited through a Denial of Service attack.
OpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zb OpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n. OpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i.
Thanks to Adam Langley (Google) for discovering and researching this issue. This issue was reported to OpenSSL on 6th June 2014.
The fix was developed by Adam Langley.
DTLS memory leak from zero-length fragments (CVE-2014-3507)
By sending carefully crafted DTLS packets an attacker could cause openssl to leak memory. This can be exploited through a Denial of Service attack.
OpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zb OpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n. OpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i.
Thanks to Adam Langley (Google) for discovering and researching this issue. This issue was reported to OpenSSL on 6th June 2014.
The fix was developed by Adam Langley.
OpenSSL DTLS anonymous EC(DH) denial of service (CVE-2014-3510)
OpenSSL DTLS clients enabling anonymous (EC)DH ciphersuites are subject to a denial of service attack. A malicious server can crash the client with a null pointer dereference (read) by specifying an anonymous (EC)DH ciphersuite and sending carefully crafted handshake messages.
OpenSSL 0.9.8 DTLS client users should upgrade to 0.9.8zb OpenSSL 1.0.0 DTLS client users should upgrade to 1.0.0n. OpenSSL 1.0.1 DTLS client users should upgrade to 1.0.1i.
Thanks to Felix Gröbert (Google) for discovering and researching this issue. This issue was reported to OpenSSL on 18th July 2014.
The fix was developed by Emilia Käsper of the OpenSSL development team.
OpenSSL 1.0.1 SSL/TLS server users should upgrade to 1.0.1i.
Thanks to David Benjamin and Adam Langley (Google) for discovering and researching this issue. This issue was reported to OpenSSL on 21st July 2014.
The fix was developed by David Benjamin.
SRP buffer overrun (CVE-2014-3512)
A malicious client or server can send invalid SRP parameters and overrun an internal buffer. Only applications which are explicitly set up for SRP use are affected.
OpenSSL 1.0.1 SSL/TLS users should upgrade to 1.0.1i.
Thanks to Sean Devlin and Watson Ladd (Cryptography Services, NCC Group) for discovering this issue. This issue was reported to OpenSSL on 31st July 2014.
The fix was developed by Stephen Henson of the OpenSSL core team.
References
URL for this Security Advisory: https://www.openssl.org/news/secadv_20140806.txt
Note: the online version of the advisory may be updated with additional details over time.
Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/openssl-1.0.1i-i486-1_slack14.1.txz: Upgraded. This update fixes several security issues: Double Free when processing DTLS packets (CVE-2014-3505) DTLS memory exhaustion (CVE-2014-3506) DTLS memory leak from zero-length fragments (CVE-2014-3507) Information leak in pretty printing functions (CVE-2014-3508) Race condition in ssl_parse_serverhello_tlsext (CVE-2014-3509) OpenSSL DTLS anonymous EC(DH) denial of service (CVE-2014-3510) OpenSSL TLS protocol downgrade attack (CVE-2014-3511) SRP buffer overrun (CVE-2014-3512) Crash with SRP ciphersuite in Server Hello message (CVE-2014-5139) For more information, see: https://www.openssl.org/news/secadv_20140806.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3505 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3506 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3507 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3508 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3509 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3510 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3511 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3512 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5139 ( Security fix ) patches/packages/openssl-solibs-1.0.1i-i486-1_slack14.1.txz: Upgraded. ( Security fix ) +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated packages for Slackware 13.0: ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssl-0.9.8zb-i486-1_slack13.0.txz ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssl-solibs-0.9.8zb-i486-1_slack13.0.txz
Updated packages for Slackware x86_64 13.0: ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssl-0.9.8zb-x86_64-1_slack13.0.txz ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssl-solibs-0.9.8zb-x86_64-1_slack13.0.txz
Updated packages for Slackware 13.1: ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/openssl-0.9.8zb-i486-1_slack13.1.txz ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/openssl-solibs-0.9.8zb-i486-1_slack13.1.txz
Updated packages for Slackware x86_64 13.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/openssl-0.9.8zb-x86_64-1_slack13.1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/openssl-solibs-0.9.8zb-x86_64-1_slack13.1.txz
Updated packages for Slackware 13.37: ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/openssl-0.9.8zb-i486-1_slack13.37.txz ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/openssl-solibs-0.9.8zb-i486-1_slack13.37.txz
Updated packages for Slackware x86_64 13.37: ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/openssl-0.9.8zb-x86_64-1_slack13.37.txz ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/openssl-solibs-0.9.8zb-x86_64-1_slack13.37.txz
Updated packages for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-1.0.1i-i486-1_slack14.0.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-solibs-1.0.1i-i486-1_slack14.0.txz
Updated packages for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-1.0.1i-x86_64-1_slack14.0.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-solibs-1.0.1i-x86_64-1_slack14.0.txz
Updated packages for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-1.0.1i-i486-1_slack14.1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-solibs-1.0.1i-i486-1_slack14.1.txz
Updated packages for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-1.0.1i-x86_64-1_slack14.1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-solibs-1.0.1i-x86_64-1_slack14.1.txz
Updated packages for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-1.0.1i-i486-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-1.0.1i-i486-1.txz
Updated packages for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/openssl-solibs-1.0.1i-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssl-1.0.1i-x86_64-1.txz
MD5 signatures: +-------------+
Slackware 13.0 packages: 30bdc015b10d8891b90d3f6ea34f5fdd openssl-0.9.8zb-i486-1_slack13.0.txz 3dc4140c22c04c94e5e74386a5a1c200 openssl-solibs-0.9.8zb-i486-1_slack13.0.txz
Slackware x86_64 13.0 packages: 3da32f51273762d67bf9dbcc91af9413 openssl-0.9.8zb-x86_64-1_slack13.0.txz 075e5d12e5b909ecac923cb210f83544 openssl-solibs-0.9.8zb-x86_64-1_slack13.0.txz
Slackware 13.1 packages: 3b7e2bb2b317bf72b8f9b2b7a14bddfb openssl-0.9.8zb-i486-1_slack13.1.txz 92af0784eade0674332a56bfab73b97d openssl-solibs-0.9.8zb-i486-1_slack13.1.txz
Slackware x86_64 13.1 packages: df5f961109d7b50971660ca6a7d4c48c openssl-0.9.8zb-x86_64-1_slack13.1.txz 582aaeae3d56730a2e1538a67d4e44da openssl-solibs-0.9.8zb-x86_64-1_slack13.1.txz
Slackware 13.37 packages: 546445d56d3b367fa0dd4e80859c4620 openssl-0.9.8zb-i486-1_slack13.37.txz b80e9df8cdd0649939ec2fab20d24691 openssl-solibs-0.9.8zb-i486-1_slack13.37.txz
Slackware x86_64 13.37 packages: 9c9ce97dc21340924a3e27c1a8047023 openssl-0.9.8zb-x86_64-1_slack13.37.txz 0fe1931f2fc82fb8d5fbe72680caf843 openssl-solibs-0.9.8zb-x86_64-1_slack13.37.txz
Slackware 14.0 packages: d1580f4b22b99cee42b22276653c8180 openssl-1.0.1i-i486-1_slack14.0.txz ec93cec2bcab8ae7391a504573cbc231 openssl-solibs-1.0.1i-i486-1_slack14.0.txz
Slackware x86_64 14.0 packages: 329475de3759225b1d02aa7317b2eb58 openssl-1.0.1i-x86_64-1_slack14.0.txz 25f2a198022d974534986a3913ca705c openssl-solibs-1.0.1i-x86_64-1_slack14.0.txz
Slackware 14.1 packages: 8336457bc31d44ebf502ffc4443f12f7 openssl-1.0.1i-i486-1_slack14.1.txz 4b99ac357fbd3065c53367eea246b8c7 openssl-solibs-1.0.1i-i486-1_slack14.1.txz
Slackware x86_64 14.1 packages: f2b8f81d9d7dc02e5d1011f663ccc95d openssl-1.0.1i-x86_64-1_slack14.1.txz 4360abffbb57cb18ba0720f782d78250 openssl-solibs-1.0.1i-x86_64-1_slack14.1.txz
Slackware -current packages: 49ecd332a899cf742d3467a6efe44269 a/openssl-solibs-1.0.1i-i486-1.txz 27da017c49045981b1793f105aff365f n/openssl-1.0.1i-i486-1.txz
Slackware x86_64 -current packages: 8d74f3d770802182137c84d925f58cbc a/openssl-solibs-1.0.1i-x86_64-1.txz fd9d94d3210f0aedf74959cb0887e2b8 n/openssl-1.0.1i-x86_64-1.txz
Installation instructions: +------------------------+
Upgrade the packages as root:
upgradepkg openssl-1.0.1i-i486-1_slack14.1.txz openssl-solibs-1.0.1i-i486-1_slack14.1.txz
+-----+
Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com
+------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04624296
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c04624296 Version: 1
HPSBMU03304 rev.1 - HP Insight Control server deployment on Linux and Windows, Remote Disclosure of Information
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2015-04-01 Last Updated: 2015-04-01
Potential Security Impact: Remote disclosure of information
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP System Management Homepage (SMH), HP Smart Update Manager (SUM), and HP Version Control Agent (VCA) which are components of HP Insight Control server deployment. These vulnerabilities are related to the SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" or "POODLE". The components of HP Insight Control server deployment could be exploited remotely to allow disclosure of information.
HP Insight Control server deployment includes HP System Management Homepage (SMH), HP Version Control Agent (VCA), and HP Smart Update Manager (SUM) and deploys them through the following jobs. This bulletin provides the information needed to update the vulnerable components in HP Insight Control server deployment.
Install HP Management Agents for Windows x86/x64 Install HP Management Agents for RHEL 5 x64 Install HP Management Agents for RHEL 6 x64 Install HP Management Agents for SLES 10 x64 Install HP Management Agents for SLES 11 x64 Upgrade Proliant Firmware
References:
CVE-2014-3508 CVE-2014-3509 CVE-2014-3511 CVE-2014-3513 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-5139 SSRT102004
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Insight Control server deployment v7.1.2, v7.2.0, v7.2.1, v7.2.2, v7.3.1
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2014-3508 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2014-3509 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2014-3511 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2014-3513 (AV:N/AC:M/Au:N/C:N/I:N/A:C) 7.1 CVE-2014-3566 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2014-3567 (AV:N/AC:M/Au:N/C:N/I:N/A:C) 7.1 CVE-2014-3568 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2014-5139 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following instructions to resolve this vulnerability.
Note: For HP Insight deployment Control server v7.1.2, v7.2.0, v7.2.1 and v7.2.2, you must upgrade to v7.3.1 and follow the steps from 1 to 11 mentioned below to resolve the vulnerability.
Delete the files smh.exe from Component Copy Location listed in the following table, rows 1 and 2. Delete the files vca.exe/vcaamd64-.exe from Component Copy Location listed in the following table, rows 3 and 4. Delete the files hpsmh-7..rpm" from Component Copy Location listed in row 5. In sequence, perform the steps from left to right in the following table. First, download components from Download Link; Second, rename the component as suggested in Rename to. Third, copy the component to the location specified in Component Copy Location. Table Row Number Download Link Rename to Component Copy Location
1 http://www.hp.com/swpublishing/MTX-bd2042a1c7574aad90c4839efe smhamd64-cp023964.exe \express\hpfeatures\hpagents-ws\components\Win2008
2 http://www.hp.com/swpublishing/MTX-062078f1ae354b7e99c86c151c smhx86-cp023963.exe \express\hpfeatures\hpagents-ws\components\Win2008
3 http://www.hp.com/swpublishing/MTX-7b23e47d5d9b420b94bd1323eb vcax86 cp025295.exe \express\hpfeatures\hpagents-ws\components\Win2008
4 http://www.hp.com/swpublishing/MTX-2557aa7dc1654cf6b547c1a9e4 vcaamd64-cp025296.exe \express\hpfeatures\hpagents-ws\components\Win2008
5 http://www.hp.com/swpublishing/MTX-5827037475e44abab586463723 Do not rename the downloaded component for this step. \express\hpfeatures\hpagents-sles11-x64\components
\express\hpfeatures\hpagents-sles10-x64\components
\express\hpfeatures\hpagents-rhel5-x64\components
\express\hpfeatures\hpagents-rhel6-x64\components
6 http://www.hp.com/swpublishing/MTX-57ab6bb78b6e47a18718f44133 Do not rename the downloaded component for this step. \express\hpfeatures\hpagents-sles11-x64\components
\express\hpfeatures\hpagents-sles10-x64\components
\express\hpfeatures\hpagents-rhel5-x64\components
\express\hpfeatures\hpagents-rhel6-x64\components
7 http://www.hp.com/swpublishing/MTX-34bcab41ac7e4db299e3f5f2f1 smhx86-cp025274.exe \express\hpfeatures\hpagents-ws\components\Win2003
8 http://www.hp.com/swpublishing/MTX-00eb9ac82e86449e8c3ba101bd smhamd64-cp025275.exe \express\hpfeatures\hpagents-ws\components\Win2003
Download and extract the HP SUM component from ftp://ftp.hp.com/pub/softlib2/software1/pubsw-windows/p991570621/v99346
Copy all content from extracted folder and paste at \eXpress\hpfeatures\fw-proLiant\components Initiate Install HP Management Agents for SLES 11 x64 on the target running SLES11 x64. Initiate Install HP Management Agents for SLES 10 x64 on the target running SLES10 x64. Initiate Install HP Management Agents for RHEL 6 x64 on the target running RHEL 6 x64. Initiate Install HP Management Agents for RHEL 5 x64 on the target running RHEL 5 x64. Initiate Install HP Management Agents for Windows x86/x64 job on the target running Windows.
HISTORY Version:1 (rev.1) - 1 April 2015 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Moderate: rhevm-spice-client security and bug fix update Advisory ID: RHSA-2015:0197-01 Product: Red Hat Enterprise Virtualization Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-0197.html Issue date: 2014-07-25 Updated on: 2015-02-11 CVE Names: CVE-2014-3509 CVE-2014-3511 =====================================================================
- Summary:
Updated rhevm-spice-client packages that fix two security issues and several bugs are now available for Red Hat Enterprise Virtualization Manager 3.
Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
RHEV-M 3.5 - noarch
- Description:
Red Hat Enterprise Virtualization Manager provides access to virtual machines using SPICE. These SPICE client packages provide the SPICE client and usbclerk service for both Windows 32-bit operating systems and Windows 64-bit operating systems. (CVE-2014-3509)
A flaw was found in the way OpenSSL handled fragmented handshake packets. (CVE-2014-3511)
This update also fixes the following bugs:
-
Previously, various clipboard managers, operating on the client or on the guest, would occasionally lose synchronization, which resulted in clipboard data loss and the SPICE console freezing. Now, spice-gtk have been patched, such that clipboard synchronization does not freeze the SPICE console anymore. (BZ#1083489)
-
Prior to this update, when a SPICE console was launched from the Red Hat Enterprise Virtualization User Portal with the 'Native Client' invocation method and 'Open in Full Screen' selected, the displays of the guest virtual machine were not always configured to match the client displays. After this update, the SPICE console will show a full-screen guest display for each client monitor. (BZ#1076243)
-
A difference in behavior between Linux and Windows clients caused an extra nul character to be sent when pasting text in a guest machine from a Windows client. This invisible character was visible in some Java applications. With this update, the extra nul character is removed from text strings and no more extraneous character would appear. (BZ#1090122)
-
Previously, If the clipboard is of type image/bmp, and the data is of 0 size, GTK+ will crash. With this update, the data size is checked first, and GTK+ no longer crashes when clipboard is of type image/bmp, and the data is of 0 size. (BZ#1090433)
-
Modifier-only key combinations cannot be registered by users as hotkeys so if a user tries to set a modifier-only key sequence (for example, 'ctrl+alt') as the hotkey for releasing the cursor, it will fail, and the user will be able to release the cursor from the window. With this update, when a modifier-only hotkey is attempted to be registered, it will fall back to the default cursor-release sequence (which happens to be 'ctrl+alt'). (BZ#985319)
-
Display configuration sometimes used outdated information about the position of the remote-viewer windows in order to align and configure the guest displays. Occasionally, this caused the guest displays to became unexpectedly swapped when a window is resized. With this update, remote-viewer will always use the current window locations to align displays, rather than using a possibly outdated cached location information. (BZ#1018182)
All rhevm-spice-client users are advised to upgrade to these updated packages, which contain backported patches to correct these issues.
- Solution:
Before applying this update, make sure all previously released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258
- Bugs fixed (https://bugzilla.redhat.com/):
1018145 - --full-screen=auto-conf sometimes (but frequently) doesn't work correctly 1018182 - primary monitor is switched if some screen gets bigger then current primary screen 1076243 - [BUG] RHEV SPICE console not opening in full screen or detecting resolution by default 1083489 - [SPICE][BUG] Spice session freezes randomly 1090122 - Pasting into java apps inserts unprintable character 1090433 - [GTK][BUG] win32: add more clipboard data checks to avoid crash 1103366 - Rebase virt-viewer to 0.6.0 1105650 - Fix windows productversion to fit -z releases 1115445 - in About dialog, hyphen version-build dividing hyphen is missing 1127498 - CVE-2014-3509 openssl: race condition in ssl_parse_serverhello_tlsext 1127504 - CVE-2014-3511 openssl: TLS protocol downgrade attack
- Package List:
RHEV-M 3.5:
Source: rhevm-spice-client-3.5-2.el6.src.rpm
noarch: rhevm-spice-client-x64-cab-3.5-2.el6.noarch.rpm rhevm-spice-client-x64-msi-3.5-2.el6.noarch.rpm rhevm-spice-client-x86-cab-3.5-2.el6.noarch.rpm rhevm-spice-client-x86-msi-3.5-2.el6.noarch.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2014-3509 https://access.redhat.com/security/cve/CVE-2014-3511 https://access.redhat.com/security/updates/classification/#moderate
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iD8DBQFU253LXlSAg2UNWIIRAjJEAKCrqGkFJHhLN3Iqt069y96etuCAxgCcCTWW 1SViofNGiqbiufMWwY7okg4= =cjiU -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201412-39
http://security.gentoo.org/
Severity: Normal Title: OpenSSL: Multiple vulnerabilities Date: December 26, 2014 Bugs: #494816, #519264, #525468 ID: 201412-39
Synopsis
Multiple vulnerabilities have been found in OpenSSL, the worst of which could result in Denial of Service or Man-in-the-Middle attacks.
Affected packages
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-libs/openssl < 1.0.1j *>= 0.9.8z_p2 >= 1.0.1j
Description
Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced below for details.
Resolution
All OpenSSL 1.0.1 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=dev-libs/openssl-1.0.1j"
All OpenSSL 0.9.8 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=dev-libs/openssl-0.9.8z_p2"
Packages which depend on this library may need to be recompiled. Tools such as revdep-rebuild may assist in identifying these packages.
References
[ 1 ] CVE-2013-6449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6449 [ 2 ] CVE-2013-6450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6450 [ 3 ] CVE-2014-3505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3505 [ 4 ] CVE-2014-3506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3506 [ 5 ] CVE-2014-3507 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3507 [ 6 ] CVE-2014-3509 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3509 [ 7 ] CVE-2014-3510 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3510 [ 8 ] CVE-2014-3511 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3511 [ 9 ] CVE-2014-3512 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3512 [ 10 ] CVE-2014-3513 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3513 [ 11 ] CVE-2014-3567 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3567 [ 12 ] CVE-2014-3568 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3568 [ 13 ] CVE-2014-5139 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-5139
Availability
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-201412-39.xml
Concerns?
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License
Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5 .
References:
CVE-2014-3508 CVE-2014-3509 CVE-2014-3511 CVE-2014-3513 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-5139 SSRT101894 SSRT101916 SSRT101918 SSRT101920 SSRT101921 SSRT101922 SSRT101923 SSRT101925 SSRT101926 SSRT101927
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. The HP Matrix Operating Environment v7.2.3 Update kit applicable to HP Matrix Operating Environment 7.2.x installations is available at the following location:
https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber =HPID
NOTE: Please read the readme.txt file before proceeding with the installation. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
============================================================================= FreeBSD-SA-14:18.openssl Security Advisory The FreeBSD Project
Topic: OpenSSL multiple vulnerabilities
Category: contrib Module: openssl Announced: 2014-09-09 Affects: All supported versions of FreeBSD. Corrected: 2014-08-07 21:04:42 UTC (stable/10, 10.0-STABLE) 2014-09-09 10:09:46 UTC (releng/10.0, 10.0-RELEASE-p8) 2014-08-07 21:06:34 UTC (stable/9, 9.3-STABLE) 2014-09-09 10:13:46 UTC (releng/9.3, 9.3-RELEASE-p1) 2014-09-09 10:13:46 UTC (releng/9.2, 9.2-RELEASE-p11) 2014-09-09 10:13:46 UTC (releng/9.1, 9.1-RELEASE-p18) 2014-08-07 21:06:34 UTC (stable/8, 8.4-STABLE) 2014-09-09 10:13:46 UTC (releng/8.4, 8.4-RELEASE-p15) CVE Name: CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3510, CVE-2014-3509, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139
For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit . Background
FreeBSD includes software from the OpenSSL Project. The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library.
II. [CVE-2014-5139]
III. Impact
A remote attacker may be able to cause a denial of service (application crash, large memory consumption), obtain additional information, cause protocol downgrade. Additionally, a remote attacker may be able to run arbitrary code on a vulnerable system if the application has been set up for SRP.
IV. Workaround
No workaround is available.
V. Solution
Perform one of the following:
1) Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date.
2) To update your vulnerable system via a source code patch:
The following patches have been verified to apply to the applicable FreeBSD release branches.
a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.
[FreeBSD 10.0]
fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-10.0.patch
fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-10.0.patch.asc
gpg --verify openssl-10.0.patch.asc
[FreeBSD 9.3]
fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.3.patch
fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.3.patch.asc
gpg --verify openssl-9.3.patch.asc
[FreeBSD 9.2, 9.1, 8.4]
fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.patch
fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.patch.asc
gpg --verify openssl-9.patch.asc
b) Apply the patch. Execute the following commands as root:
cd /usr/src
patch < /path/to/patch
c) Recompile the operating system using buildworld and installworld as described in .
Restart all deamons using the library, or reboot the system.
3) To update your vulnerable system via a binary patch:
Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility:
freebsd-update fetch
freebsd-update install
VI. Correction details
The following list contains the correction revision numbers for each affected branch.
Branch/path Revision
stable/8/ r269687 releng/8.4/ r271305 stable/9/ r269687 releng/9.1/ r271305 releng/9.2/ r271305 releng/9.3/ r271305 stable/10/ r269686 releng/10.0/ r271304
To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed:
svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base
Or visit the following URL, replacing NNNNNN with the revision number:
VII.
References:
CVE-2014-0224 Remote Unauthorized Access, Disclosure of Information CVE-2014-3509 Remote Denial of Service (DoS) CVE-2014-3511 Remote Unauthorized Access, Disclosure of Information CVE-2014-5139 Remote Denial of Service (DoS) SSRT101818
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. Note: For versions not listed, please contact support:
Note: ServiceCenter 6.2 is impacted only if using the Directory Services integration feature with the SC LDAP over SSL (LDAPS) protocol. If this feature is in use, HP recommends that ServiceCenter 6.2 customers upgrade to Service Manager 7.11, 9.21, or 9.34, and then apply the patches listed below.
Patch Version Package Name / SSO URL
SM711P22 AIX Server 7.11.720 p22 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00614
HP Itanium Server 7.11.720 p22 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00615
HP parisc Server 7.11.720 p22 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00616
Linux x86 Server 7.11.720 p22 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00617
Solaris Server 7.11.720 p22 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00618
Windows Server 7.11.720 p22 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00619
SM921P9 AIX server 9.21.706 P9 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00621
HPUX/IA server 9.21.706 P9 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00622
HPUX/PA server 9.21.706 P9 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00623
Linux server 9.21.706 P9 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00624
Solaris server 9.21.706 P9 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00625
Windows server 9.21.706 P9 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00626
SM934P2 AIX Server 9.34.2003 p2 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00605
HP Itanium Server 9.34.2003 p2 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00606
Linux Server 9.34.2003 p2 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00607
Solaris Server 9.34.2003 p2 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00608
Windows Server 9.34.2003 p2 https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse arch/document/LID/HPSM_00609
HISTORY Version:1 (rev.1) - 22 January 2015 Initial release Version:2 (rev.2) - 23 January 2015 added note for versions not listed in table
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201408-0081",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0l"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0i"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0f"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0m"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0d"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1e"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0c"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0b"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0k"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1b"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1g"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0j"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1c"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0g"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1d"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0a"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0e"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1a"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.0h"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1h"
},
{
"model": "openssl",
"scope": "eq",
"trust": 1.0,
"vendor": "openssl",
"version": "1.0.1f"
},
{
"model": "security network intrusion prevention system gx7412-05",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.1.1"
},
{
"model": "aura collaboration environment",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "3.0"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.1"
},
{
"model": "upward integration modules for vmware vsphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.5"
},
{
"model": "security network intrusion prevention system gx5108-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "8.4-release-p12",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx5208-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "flex system fc3171 8gb san pass-thru",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.3"
},
{
"model": "security network intrusion prevention system gx4004",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "10.0-beta",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "upward integration modules scvmm add-in",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.3"
},
{
"model": "-release-p2",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.1"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.0"
},
{
"model": "virtual connect 8gb 24-port fc module",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "3.0"
},
{
"model": "system management homepage",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.4.1"
},
{
"model": "alpha",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.0"
},
{
"model": "tivoli netcool system service monitor fp1",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.0.0"
},
{
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "big-ip aam",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.11"
},
{
"model": "9.1-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "big-ip afm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "8.4-release-p15",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.8"
},
{
"model": "project openssl 1.0.1e",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "security network intrusion prevention system gx5008",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "sterling connect:direct for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.1.0.4"
},
{
"model": "i v5r4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.3"
},
{
"model": "big-ip asm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "insight control",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "security network intrusion prevention system gx5108-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "project openssl 1.0.1a",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.1"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.016"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0"
},
{
"model": "8.1-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "oncommand unified manager core package",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.5"
},
{
"model": "9.2-release-p11",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx3002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "i v5r3",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1"
},
{
"model": "proventia network security controller",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.470"
},
{
"model": "security network intrusion prevention system gx5008",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.2.0.0"
},
{
"model": "enterprise linux workstation",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"model": "virtual connect 8gb 24-port fc module",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.0"
},
{
"model": "big-ip afm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "clustered data ontap antivirus connector",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.3"
},
{
"model": "tivoli netcool/reporter",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5"
},
{
"model": "vios fp-25 sp-02",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.4"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5.1"
},
{
"model": "9.1-release-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "8.3-release-p16",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "insight control server provisioning",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.2"
},
{
"model": "big-ip apm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.0"
},
{
"model": "sametime",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0.0.1"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.2"
},
{
"model": "netscaler t1",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"model": "7.3-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "8.4-release-p9",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "upward integration modules for vmware vsphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.0.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.6.2"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.2"
},
{
"model": "7.1-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.34"
},
{
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10"
},
{
"model": "security network intrusion prevention system gx7412",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.4"
},
{
"model": "big-ip afm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "idatplex dx360 m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "79120"
},
{
"model": "data ontap smi-s agent",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.8"
},
{
"model": "version control agent",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.8"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.4"
},
{
"model": "security network intrusion prevention system gv200",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "-release-p5",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.0"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.1.0"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.0"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2407863"
},
{
"model": "flex system fc3171 8gb san switch",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.4"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5.1"
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.1.0"
},
{
"model": "idatplex dx360 m4 water cooled type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "79180"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.1"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x35007383"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.1"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.1.2"
},
{
"model": "release-p4",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.1"
},
{
"model": "tivoli composite application manager for transactions",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1.0"
},
{
"model": "tivoli endpoint manager for remote control",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.2.1"
},
{
"model": "project openssl 1.0.1g",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5.0"
},
{
"model": "tivoli composite application manager for transactions",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.4"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "10.0-release-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "clustered data ontap antivirus connector",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.2"
},
{
"model": "-prerelease",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.0"
},
{
"model": "9.1-rc2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.0.0.8"
},
{
"model": "rational application developer for websphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1"
},
{
"model": "security network intrusion prevention system gx4004",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2207906"
},
{
"model": "security network intrusion prevention system gv1000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.1"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.14"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.9"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.2.4"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5"
},
{
"model": "command center appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.7"
},
{
"model": "sterling file gateway",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.1"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "big-ip ltm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "-release/alpha",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.1"
},
{
"model": "8.2-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.2.0"
},
{
"model": "initiate master data service patient hub",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.7"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.1"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.00"
},
{
"model": "9.2-release-p8",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "netscaler gateway",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"model": "junos os 14.2r1",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"model": "oncommand unified manager core package",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5"
},
{
"model": "2-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.2"
},
{
"model": "security network intrusion prevention system gx3002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "9.1--releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "tivoli provisioning manager for os deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.2"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.1"
},
{
"model": "proventia network security controller 1.0.3352m",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "idatplex dx360 m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "79130"
},
{
"model": "infosphere master data management patient hub",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "10.0"
},
{
"model": "6.3-release-p10",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "tivoli composite application manager for transactions",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2.0"
},
{
"model": "9.3-beta3-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gv200",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "-release-p20",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.6"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1"
},
{
"model": "security network intrusion prevention system gx5008-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "image construction and composition tool",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.1"
},
{
"model": "-release-p8",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.3"
},
{
"model": "security network intrusion prevention system gx5008",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "flex system fc5022 16gb san scalable switch 7.2.1c",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "9.0-release-p6",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-release-p14",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.0"
},
{
"model": "security network intrusion prevention system gx7800",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "security network intrusion prevention system gx7412-10",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.0"
},
{
"model": "qradar siem mr2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "-stablepre2001-07-20",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5.1"
},
{
"model": "upward integration modules for microsoft system center",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.2"
},
{
"model": "security network intrusion prevention system gx3002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.5"
},
{
"model": "8.3-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.10"
},
{
"model": "6.3-release-p11",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.14"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.0.5"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.2"
},
{
"model": "virtual connect enterprise manager sdk",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.0"
},
{
"model": "9.2-rc2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "snapdrive for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0"
},
{
"model": "security network intrusion prevention system gv200",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x33007382"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.3"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.6"
},
{
"model": "sametime",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2.1"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.5"
},
{
"model": "virtual connect 8gb 24-port fc module",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "1.0"
},
{
"model": "7.2-rc2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "7.0-release-p12",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5"
},
{
"model": "9.0-rc3",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "upward integration modules for microsoft system center",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.3"
},
{
"model": "security network intrusion prevention system gx7412",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "open systems snapvault",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.0"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.3"
},
{
"model": "junos os 13.3r4",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.0.11"
},
{
"model": "upward integration modules hardware management pack",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.2"
},
{
"model": "endpoint manager for remote control",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.0"
},
{
"model": "upward integration modules for microsoft system center",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.0.2"
},
{
"model": "system type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x3850x638370"
},
{
"model": "-release-p3",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.11"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.4"
},
{
"model": "netscaler application delivery controller",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"model": "systems director",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.3.20"
},
{
"model": "security network intrusion prevention system gx4004-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "upward integration modules integrated installer",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.2"
},
{
"model": "oncommand unified manager core package",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2"
},
{
"model": "enterprise linux desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "9.1-release-p12",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "7.1-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.1"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.2"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3"
},
{
"model": "big-ip apm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "version control agent",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.3"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.13"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "insight control server deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.0"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.3"
},
{
"model": "7.0-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "sdk for node.js",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.3"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "rc2",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.2"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "10.1"
},
{
"model": "9.0-rc1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system manager node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7955"
},
{
"model": "security network intrusion prevention system gx5008-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.2"
},
{
"model": "security network intrusion prevention system gx5208",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "security network intrusion prevention system gx4002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "nextscale nx360 m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "54550"
},
{
"model": "big-ip aam",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "upward integration modules for microsoft system center",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.1"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.3"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.08"
},
{
"model": "7.2-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-stablepre122300",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.2"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.015"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.0.13"
},
{
"model": "security network intrusion prevention system gv1000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.2x"
},
{
"model": "7.1-release-p5",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "7.0-release-p8",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "linux ia-64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6.2"
},
{
"model": "8.4-release-p8",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "systems director",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.3.5.0"
},
{
"model": "prerelease",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.2"
},
{
"model": "big-ip pem",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.1"
},
{
"model": "big-ip apm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.2.1"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2408738"
},
{
"model": "insight control",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "sterling connect:direct for microsoft windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5.01"
},
{
"model": "snapdrive for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.2"
},
{
"model": "8.1-release-p5",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.3.2"
},
{
"model": "servicecenter",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2"
},
{
"model": "security network intrusion prevention system gx5008-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "security network intrusion prevention system gx7412-05",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.5"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.0.x"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.11"
},
{
"model": "9.3-rc",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "snapdrive for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.1"
},
{
"model": "enterprise linux workstation",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "9.3-beta1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.1"
},
{
"model": "data ontap smi-s agent",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.1.1"
},
{
"model": "8.4-release-p13",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx7412-10",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "7.1-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "snapdrive for windows",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1.2"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "version control agent",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.2"
},
{
"model": "enterprise linux desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"model": "security network intrusion prevention system gx5008",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.31"
},
{
"model": "10.0-rc3-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "systems insight manager",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1.7"
},
{
"model": "-pre-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.1"
},
{
"model": "infosphere master data management provider hub",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "10.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.2"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.7"
},
{
"model": "system m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x365079150"
},
{
"model": "rational application developer for websphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.0.1"
},
{
"model": "8.0-release",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.0.0"
},
{
"model": "security network intrusion prevention system gx4002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "flex system fc3171 8gb san switch",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.3"
},
{
"model": "9.3-stable",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "enterprise linux load balancer eus 6.5.z",
"scope": null,
"trust": 0.3,
"vendor": "redhat",
"version": null
},
{
"model": "security network intrusion prevention system gx7412-10",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "9.2-rc2-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5.3"
},
{
"model": "security network intrusion prevention system gv200",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.5"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.1"
},
{
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.0"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.0.6"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.2.2"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.11"
},
{
"model": "9.2-release-p7",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "big-ip gtm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x35507914"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.2.1"
},
{
"model": "8.3-release-p15",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.0.0.9"
},
{
"model": "project openssl 1.0.1c",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "9.1-release-p11",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.0"
},
{
"model": "9.1-release-p16",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.3"
},
{
"model": "-release-p3",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.4"
},
{
"model": "7.3-release-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1.5"
},
{
"model": "7.2-prerelease",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "data ontap smi-s agent",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.3x"
},
{
"model": "9.3-rc2-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "tssc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0"
},
{
"model": "8.3-release-p8",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx4002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "-stablepre2002-03-07",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.5"
},
{
"model": "security network intrusion prevention system gx5108-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "project openssl 1.0.1f",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "sterling connect:direct for microsoft windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5.00"
},
{
"model": "oncommand workflow automation",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2"
},
{
"model": "upward integration modules for vmware vsphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.0.2"
},
{
"model": "security network intrusion prevention system gx6116",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.4.1"
},
{
"model": "gpfs for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.5.0.11"
},
{
"model": "system m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x357087330"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "1.2"
},
{
"model": "8.3-release-p11",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1.6.1"
},
{
"model": "tivoli provisioning manager for images",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1.1.0"
},
{
"model": "upward integration modules for microsoft system center",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.0.1"
},
{
"model": "upward integration modules scvmm add-in",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.2"
},
{
"model": "7.2-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.3"
},
{
"model": "sametime",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0.0.0"
},
{
"model": "8.3-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "9.2-release-p3",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system fc5022 16gb san scalable switch 7.3.0a",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "cms r17",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.2"
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.0"
},
{
"model": "7.3-release",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "sdk for node.js",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.7"
},
{
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "7"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "10.0"
},
{
"model": "6.4-release-p11",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "sterling file gateway",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2"
},
{
"model": "oncommand workflow automation",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "3.0"
},
{
"model": "oncommand unified manager core package 5.2.1p1",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.0"
},
{
"model": "8.4-release-p11",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-release-p9",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.3"
},
{
"model": "7.4-release-p12",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.3.1"
},
{
"model": "security network intrusion prevention system gx7412-05",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "alpha",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.0"
},
{
"model": "security network intrusion prevention system gx6116",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.2"
},
{
"model": "8.3-release-p14",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.1.1"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2202585"
},
{
"model": "insight control",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "-release-p3",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.4"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.7"
},
{
"model": "10.0-release-p5",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "9.1-release-p7",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "security network intrusion prevention system gx5008-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "security network intrusion prevention system gx3002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.1.1"
},
{
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.04"
},
{
"model": "9.1-release-p17",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.1.21"
},
{
"model": "security network intrusion prevention system gx7800",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "security network intrusion prevention system gx5208-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "upward integration modules for vmware vsphere",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "3.5.3"
},
{
"model": "systems director",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.3.2.2"
},
{
"model": "flex system fc3171 8gb san pass-thru",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.2"
},
{
"model": "open systems snapvault 3.0.1p6",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "snapdrive for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2.2"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2"
},
{
"model": "linux mips",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.5"
},
{
"model": "security network intrusion prevention system gx7412-05",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.1.1"
},
{
"model": "security network intrusion prevention system gx5108-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "-release-p1",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.1"
},
{
"model": "9.3-beta1-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "watson explorer security",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.3"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4.1"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "14.1"
},
{
"model": "security network intrusion prevention system gx5208-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "8-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "storage provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.4"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2227916"
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.0"
},
{
"model": "-release-p6",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.3"
},
{
"model": "8.4-rc1-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-release-p5",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.1"
},
{
"model": "qradar risk manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2.3"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.5"
},
{
"model": "flex system fc3171 8gb san pass-thru",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.1"
},
{
"model": "8.1-release-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx5108-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0"
},
{
"model": "systems director",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.3.3.1"
},
{
"model": "aix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1"
},
{
"model": "8.0-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "7.1-release-p6",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.0"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.3.4"
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.0"
},
{
"model": "-stablepre050201",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.2"
},
{
"model": "8.4-release-p14",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-release-p9",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.0"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.0"
},
{
"model": "insight control server deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.2-"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.1.1"
},
{
"model": "9.1-release-p18",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.1.2"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.2"
},
{
"model": "junos os 14.1r2-s2",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"model": "flex system fc3171 8gb san pass-thru",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1"
},
{
"model": "10.0-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.20"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.1"
},
{
"model": "7.3-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "project openssl 1.0.1i",
"scope": "ne",
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "i v5r4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.4x"
},
{
"model": "infosphere master data management standard/advanced edition",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "11.0"
},
{
"model": "image construction and composition tool",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.3"
},
{
"model": "security network intrusion prevention system gx4002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.1.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.0.x"
},
{
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.1"
},
{
"model": "junos os 13.3r3-s2",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.4"
},
{
"model": "one-x client enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.33"
},
{
"model": "7.4-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "websphere datapower soa appliance",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.0.9"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.3.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.0"
},
{
"model": "10.0-release-p6",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "tivoli netcool system service monitor fp1",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.0.1"
},
{
"model": "storage provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.2.2"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.2"
},
{
"model": "security network intrusion prevention system gx7412",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4.1"
},
{
"model": "i v5r3",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "10"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.6"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.0"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.7"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.3"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.4"
},
{
"model": "6.4-release-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x8804259"
},
{
"model": "10.0-release-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "big-ip pem",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "i v5r4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2"
},
{
"model": "9.1-release-p15",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.1.21"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.10"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.3"
},
{
"model": "tssc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3.1"
},
{
"model": "7.0-release-p3",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "1.1.5.1"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.4"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x37508752"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5.1"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.2.3"
},
{
"model": "8.2-release-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.1"
},
{
"model": "snapdrive for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.3"
},
{
"model": "insight control server provisioning",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.0"
},
{
"model": "insight control server provisioning",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4.0"
},
{
"model": "security network intrusion prevention system gx5008-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "i v5r3",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2"
},
{
"model": "9.3-prerelease",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.20"
},
{
"model": "security network intrusion prevention system gx5208",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "8.3-release-p6",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx7800",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "storage provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.2"
},
{
"model": "big-ip pem",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "version control agent",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "6.4-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx7412-10",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "9.2-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gv1000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "system management homepage",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.5"
},
{
"model": "big-ip analytics",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5x"
},
{
"model": "8.4-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "aix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.3"
},
{
"model": "-release-p7",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.8"
},
{
"model": "-release-p32",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.5"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.0.10"
},
{
"model": "security network intrusion prevention system gx7412-05",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "big-ip link controller",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "aura collaboration environment",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "2.0"
},
{
"model": "insight control server deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.1.2"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x36307158"
},
{
"model": "7.0-release",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.2"
},
{
"model": "ip office application server sp",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.01"
},
{
"model": "storage provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.3.2"
},
{
"model": "upward integration modules hardware management pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.3"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.6"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.4"
},
{
"model": "initiate master data service provider hub",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.5"
},
{
"model": "upward integration modules integrated installer",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5.3"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.2"
},
{
"model": "insight control server deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.3.3"
},
{
"model": "security network intrusion prevention system gx4004",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.3"
},
{
"model": "-release-p20",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.11"
},
{
"model": "10.0-release-p8",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.1"
},
{
"model": "infosphere master data management standard/advanced edition",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "11.3"
},
{
"model": "big-ip gtm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "security network intrusion prevention system gx4004-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "big-ip analytics",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "security network intrusion prevention system gx5108-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "puredata system for operational analytics",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0"
},
{
"model": "8.1-release",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx5008",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "sdk for node.js",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.6"
},
{
"model": "bladecenter advanced management module 3.66g",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "8.4-rc2-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "systems director",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.3.2.1"
},
{
"model": "9.3-rc2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "qradar vulnerability manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2.3"
},
{
"model": "watson explorer security",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.1x"
},
{
"model": "9.3-rc3-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2408737"
},
{
"model": "9.0--releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "data ontap smi-s agent",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.1.2"
},
{
"model": "9.2-rc1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.0"
},
{
"model": "security network intrusion prevention system gx4002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.3.2"
},
{
"model": "7.4-release-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.0.x"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.01"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.21"
},
{
"model": "9.0-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx7412",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "ip office application server sp",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.02"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.6"
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.3"
},
{
"model": "big-ip gtm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "rc1",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.1"
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.2"
},
{
"model": "big-ip analytics",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.2"
},
{
"model": "8.4-stable",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "release -p3",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.2-"
},
{
"model": "8.1-prerelease",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "linux lts",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "14.04"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "9.3-rc1-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx3002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "tivoli netcool system service monitor fp14",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.0.0"
},
{
"model": "security network intrusion prevention system gx7412-05",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.04"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2x"
},
{
"model": "tivoli management framework",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.1.1"
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "7.4-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "1.0"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "9.2-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.2.0"
},
{
"model": "sdk for node.js",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.1"
},
{
"model": "snapdrive for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2"
},
{
"model": "security network intrusion prevention system gx5208",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.0.12"
},
{
"model": "sterling connect:direct for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.0"
},
{
"model": "security network intrusion prevention system gx4004-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.1"
},
{
"model": "security network intrusion prevention system gv1000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.10"
},
{
"model": "8-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "aura experience portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "-prerelease",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.4"
},
{
"model": "proventia network security controller",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.1209"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.6"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.3"
},
{
"model": "systems director",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.3.3.0"
},
{
"model": "7.3-release-p3",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.0"
},
{
"model": "8.2-release",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x32502583"
},
{
"model": "version control agent",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "9.2-release-p9",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "enterprise linux server aus",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6.5"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.0"
},
{
"model": "initiate master data service provider hub",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.7"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.7"
},
{
"model": "security network intrusion prevention system gx5208",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "-release-p38",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.3"
},
{
"model": "tssc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3.15"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3.3"
},
{
"model": "security network intrusion prevention system gx4004-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.1.2"
},
{
"model": "sdk for node.js",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.5"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.1.1"
},
{
"model": "project openssl",
"scope": "eq",
"trust": 0.3,
"vendor": "openssl",
"version": "1.0.1"
},
{
"model": "security network intrusion prevention system gv1000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.4"
},
{
"model": "clustered data ontap antivirus connector",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.2"
},
{
"model": "linux s/390",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "8.4-beta1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.3"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "cloudbridge",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x31002582"
},
{
"model": "snapdrive for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.1"
},
{
"model": "gpfs for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.5"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.3"
},
{
"model": "version control repository manager",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.1"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2"
},
{
"model": "6.0-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "1.1.5"
},
{
"model": "9.2-release-p5",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "initiate master data service patient hub",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.5"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.4"
},
{
"model": "security network intrusion prevention system gx6116",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.0"
},
{
"model": "upward integration modules for microsoft system center",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.5"
},
{
"model": "sterling connect:direct for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.1"
},
{
"model": "10.0-rc2-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "project openssl 1.0.1d",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1.6"
},
{
"model": "8.4-prerelease",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.9"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.1.21"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.2.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1x"
},
{
"model": "9.3-release-p1",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "open systems snapvault",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.6"
},
{
"model": "flex system fc3171 8gb san switch",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.2"
},
{
"model": "8.4-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.2.1.0"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2"
},
{
"model": "8.1-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "tssc",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3.16"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.5"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.1.1"
},
{
"model": "big-ip asm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "-release-p14",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.1"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.1"
},
{
"model": "8.1-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.11"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.5"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.1"
},
{
"model": "snapdrive for unix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2.1"
},
{
"model": "security network intrusion prevention system gx3002",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.0"
},
{
"model": "security network intrusion prevention system gx5208-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.8"
},
{
"model": "security network intrusion prevention system gx7412-10",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "security network intrusion prevention system gv200",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"model": "tealeaf cx",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.1.7.1"
},
{
"model": "flex system fc3171 8gb san switch",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1.1"
},
{
"model": "proventia network security controller",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.913"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.2"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.5"
},
{
"model": "9.1-rc1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "beta4",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.0.1"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.4"
},
{
"model": "system m5 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x310054570"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.0"
},
{
"model": "insight control server provisioning",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4.1"
},
{
"model": "9.0-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "1.1"
},
{
"model": "system m4",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x35307160"
},
{
"model": "security network intrusion prevention system gx6116",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "big-ip link controller",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "-release-p5",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.0"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.2"
},
{
"model": "9.2-rc3-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "insight control",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.3.1"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "14.0"
},
{
"model": "open systems snapvault",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.6.1"
},
{
"model": "7.2-release-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "1.5"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5"
},
{
"model": "security network intrusion prevention system gx5208",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.4"
},
{
"model": "-stablepre050201",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5"
},
{
"model": "server migration pack",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5"
},
{
"model": "security network intrusion prevention system gx4004-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "flex system fc5022 16gb san scalable switch",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3.1"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.7"
},
{
"model": "security network intrusion prevention system gx5008-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "security network intrusion prevention system gx7800",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "insight control",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.5"
},
{
"model": "9.2-release-p4",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "security network intrusion prevention system gx6116",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "websphere datapower soa appliance",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.02"
},
{
"model": "initiate master data service",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0"
},
{
"model": "7.3-release-p6",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "flashsystem",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8400"
},
{
"model": "release p7",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.3--"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.4"
},
{
"model": "big-ip link controller",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6"
},
{
"model": "aura experience portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "5.4-stable",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "sterling b2b integrator",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.1"
},
{
"model": "release-p5",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.1"
},
{
"model": "9.1-release-p14",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "9.1-release-p3",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "virtual connect enterprise manager sdk",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.4.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.8"
},
{
"model": "-release-p10",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.1"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.3"
},
{
"model": "version control agent",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.2"
},
{
"model": "security network intrusion prevention system gx5208-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "system m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x357087180"
},
{
"model": "sdk for node.js",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.2"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.0"
},
{
"model": "server migration pack",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.1"
},
{
"model": "9.3-beta1-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.1"
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.0.0.14"
},
{
"model": "project openssl 1.0.1b",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "cms r17ac.g",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "idatplex dx360 m4 water cooled type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "79190"
},
{
"model": "campaign",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.1"
},
{
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.4.3.0"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.4"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "2.2.3"
},
{
"model": "matrix operating environment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.1"
},
{
"model": "sterling connect:direct for microsoft windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.0"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.0"
},
{
"model": "security network intrusion prevention system gx7412",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "security network intrusion prevention system gx4004",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.2"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "4.2"
},
{
"model": "system type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x3950x638370"
},
{
"model": "10.0-rc1-p1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "sametime",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2.0"
},
{
"model": "big-ip ltm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "watson explorer security",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.2"
},
{
"model": "centos",
"scope": "eq",
"trust": 0.3,
"vendor": "centos",
"version": "6"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.7"
},
{
"model": "infosphere master data management standard/advanced edition",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "11.4"
},
{
"model": "qradar siem",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.9"
},
{
"model": "security network intrusion prevention system gx5208-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "10.0-stable",
"scope": "ne",
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "9.0-release",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "sterling b2b integrator",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.2"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x2408956"
},
{
"model": "flex system manager node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8731"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "7.4"
},
{
"model": "websphere datapower soa appliance",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "5.0.0.17"
},
{
"model": "upward integration modules for vmware vsphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.5.2"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x8807903"
},
{
"model": "-release-p8",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.10"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.32"
},
{
"model": "snapdrive for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1.1"
},
{
"model": "tivoli composite application manager for transactions",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3.0"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.1.2"
},
{
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.1"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.2"
},
{
"model": "linux",
"scope": null,
"trust": 0.3,
"vendor": "gentoo",
"version": null
},
{
"model": "9.2-release-p10",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "snapdrive for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "8.4-release-p7",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "snapdrive for unix",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "5.3"
},
{
"model": "enterprise linux hpc node",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "system m4 hd",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x36305466"
},
{
"model": "-release-p17",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.7"
},
{
"model": "7.0-release-p11",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "clustered data ontap antivirus connector",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.1"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.0"
},
{
"model": "security network intrusion prevention system gx5208",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "9.1-release-p10",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "qradar risk manager mr2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "security network intrusion prevention system gx7412-10",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.2.5"
},
{
"model": "security network intrusion prevention system gx4004",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "big-ip ltm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5"
},
{
"model": "security network intrusion prevention system gv1000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "rc1",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.2"
},
{
"model": "10.0-release-p7",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "open systems snapvault",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.0.1"
},
{
"model": "flex system compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x4407917"
},
{
"model": "flashsystem",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "v8400"
},
{
"model": "aix",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.1"
},
{
"model": "system m4 hd",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x36505460"
},
{
"model": "system m4 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x357087220"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.1"
},
{
"model": "flex system manager node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8734"
},
{
"model": "linux ia-32",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.37"
},
{
"model": "netscaler service delivery appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"model": "tivoli provisioning manager for os deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.1.1"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.10"
},
{
"model": "-stablepre122300",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.5"
},
{
"model": "matrix operating environment",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.5.1"
},
{
"model": "storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "2.1"
},
{
"model": "websphere datapower soa appliance",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.1.5"
},
{
"model": "proventia network security controller 1.0.3350m",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.0"
},
{
"model": "-releng",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "5.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.4"
},
{
"model": "9.1-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.0"
},
{
"model": "security network intrusion prevention system gx7800",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "-prerelease",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.8"
},
{
"model": "security network intrusion prevention system gx4004-v2",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6.1"
},
{
"model": "-stable",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.6"
},
{
"model": "cloudsystem matrix",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.2"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.1.1"
},
{
"model": "cms r17ac.h",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "contact optimization",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3"
},
{
"model": "insight control server deployment",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.2.2"
},
{
"model": "security network intrusion prevention system gx5008",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.3"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "10.0"
},
{
"model": "security network intrusion prevention system gx6116",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.6"
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.3.0"
},
{
"model": "flex system fc5022 16gb san scalable switch 7.2.0d5",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "3.1"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "6.3"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "9.2-rc1-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "8.0-rc1",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "vios",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.2.1.3"
},
{
"model": "systems insight manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2"
},
{
"model": "security network intrusion prevention system gx7800",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.4"
},
{
"model": "enterprise linux hpc node",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.2"
},
{
"model": "8.2-release-p2",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "-prerelease",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.9"
},
{
"model": "proventia network security controller",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0.1768"
},
{
"model": "upward integration modules for vmware vsphere",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.5.1"
},
{
"model": "security network intrusion prevention system gx4004",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "4.5"
},
{
"model": "-release",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.3"
},
{
"model": "system m5 type",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x325054580"
},
{
"model": "-release-p42",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "4.4"
},
{
"model": "big-ip aam",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.6.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "8.4"
},
{
"model": "version control repository manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.3.4"
},
{
"model": "storage provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.3"
},
{
"model": "tivoli provisioning manager for images system edition",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x7.1.1.0"
},
{
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "9.1"
},
{
"model": "6.4-releng",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "project openssl 1.0.1h",
"scope": null,
"trust": 0.3,
"vendor": "openssl",
"version": null
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.30"
},
{
"model": "big-ip asm",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "11.5.1"
},
{
"model": "6.4-release-p5",
"scope": null,
"trust": 0.3,
"vendor": "freebsd",
"version": null
},
{
"model": "websphere datapower soa appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.07"
}
],
"sources": [
{
"db": "BID",
"id": "69079"
},
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0m:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0j:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0k:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0l:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "HP",
"sources": [
{
"db": "PACKETSTORM",
"id": "130299"
},
{
"db": "PACKETSTORM",
"id": "130868"
},
{
"db": "PACKETSTORM",
"id": "130815"
},
{
"db": "PACKETSTORM",
"id": "131014"
},
{
"db": "PACKETSTORM",
"id": "132467"
},
{
"db": "PACKETSTORM",
"id": "132085"
},
{
"db": "PACKETSTORM",
"id": "137292"
},
{
"db": "PACKETSTORM",
"id": "137201"
},
{
"db": "PACKETSTORM",
"id": "132081"
},
{
"db": "PACKETSTORM",
"id": "131254"
}
],
"trust": 1.0
},
"cve": "CVE-2014-3511",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": true,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULMON",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"id": "CVE-2014-3511",
"impactScore": 2.9,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "MEDIUM",
"trust": 0.1,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2014-3511",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2014-3511",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in communication between a client and server that both support later TLS versions, related to a \"protocol downgrade\" issue. OpenSSL is prone to security-bypass vulnerability. \nSuccessfully exploiting these issues may allow attackers to perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks. \nOpenSSL 1.0.1 versions prior to 1.0.1i are vulnerable. ============================================================================\nUbuntu Security Notice USN-2308-1\nAugust 07, 2014\n\nopenssl vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n- Ubuntu 10.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in OpenSSL. \n\nSoftware Description:\n- openssl: Secure Socket Layer (SSL) cryptographic library and tools\n\nDetails:\n\nAdam Langley and Wan-Teh Chang discovered that OpenSSL incorrectly handled\ncertain DTLS packets. \n(CVE-2014-3506)\n\nAdam Langley discovered that OpenSSL incorrectly handled memory when\nprocessing DTLS fragments. This issue\nonly affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. When OpenSSL is used with certain\napplications, an attacker may use this issue to possibly gain access to\nsensitive information. This issue\nonly affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. This issue only affected Ubuntu 12.04 LTS\nand Ubuntu 14.04 LTS. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. This issue only affected Ubuntu 12.04 LTS and\nUbuntu 14.04 LTS. (CVE-2014-5139)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 14.04 LTS:\n libssl1.0.0 1.0.1f-1ubuntu2.5\n\nUbuntu 12.04 LTS:\n libssl1.0.0 1.0.1-4ubuntu5.17\n\nUbuntu 10.04 LTS:\n libssl0.9.8 0.9.8k-7ubuntu8.20\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes. OpenSSL Security Advisory [6 Aug 2014]\n========================================\n\nInformation leak in pretty printing functions (CVE-2014-3508)\n=============================================================\n\nA flaw in OBJ_obj2txt may cause pretty printing functions such as\nX509_name_oneline, X509_name_print_ex et al. to leak some information from the\nstack. Applications may be affected if they echo pretty printing output to the\nattacker. OpenSSL SSL/TLS clients and servers themselves are not affected. \n\nOpenSSL 0.9.8 users should upgrade to 0.9.8zb\nOpenSSL 1.0.0 users should upgrade to 1.0.0n. \nOpenSSL 1.0.1 users should upgrade to 1.0.1i. \n\nThanks to Ivan Fratric (Google) for discovering this issue. This issue\nwas reported to OpenSSL on 19th June 2014. \n\nThe fix was developed by Emilia K\u00e4sper and Stephen Henson of the OpenSSL\ndevelopment team. \n\n\nCrash with SRP ciphersuite in Server Hello message (CVE-2014-5139)\n==================================================================\n\nThe issue affects OpenSSL clients and allows a malicious server to crash\nthe client with a null pointer dereference (read) by specifying an SRP\nciphersuite even though it was not properly negotiated with the client. This can\nbe exploited through a Denial of Service attack. \n\nOpenSSL 1.0.1 SSL/TLS client users should upgrade to 1.0.1i. \n\nThanks to Joonas Kuorilehto and Riku Hietam\u00e4ki (Codenomicon) for discovering and\nresearching this issue. This issue was reported to OpenSSL on 2nd July 2014. \n\nThe fix was developed by Stephen Henson of the OpenSSL core team. \n\n\nRace condition in ssl_parse_serverhello_tlsext (CVE-2014-3509)\n==============================================================\n\nIf a multithreaded client connects to a malicious server using a resumed session\nand the server sends an ec point format extension it could write up to 255 bytes\nto freed memory. \n\nOpenSSL 1.0.0 SSL/TLS client users should upgrade to 1.0.0n. \nOpenSSL 1.0.1 SSL/TLS client users should upgrade to 1.0.1i. \n\nThanks to Gabor Tyukasz (LogMeIn Inc) for discovering and researching this\nissue. This issue was reported to OpenSSL on 8th July 2014. \n\nThe fix was developed by Gabor Tyukasz. \n\n\nDouble Free when processing DTLS packets (CVE-2014-3505)\n========================================================\n\nAn attacker can force an error condition which causes openssl to crash whilst\nprocessing DTLS packets due to memory being freed twice. This can be exploited\nthrough a Denial of Service attack. \n\nOpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zb\nOpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n. \nOpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i. \n\nThanks to Adam Langley and Wan-Teh Chang (Google) for discovering and\nresearching this issue. This issue was reported to OpenSSL on 6th June\n2014. \n\nThe fix was developed by Adam Langley. \n\n\nDTLS memory exhaustion (CVE-2014-3506)\n======================================\n\nAn attacker can force openssl to consume large amounts of memory whilst\nprocessing DTLS handshake messages. This can be exploited through a Denial of\nService attack. \n\nOpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zb\nOpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n. \nOpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i. \n\nThanks to Adam Langley (Google) for discovering and researching this\nissue. This issue was reported to OpenSSL on 6th June 2014. \n\nThe fix was developed by Adam Langley. \n\n\nDTLS memory leak from zero-length fragments (CVE-2014-3507)\n===========================================================\n\nBy sending carefully crafted DTLS packets an attacker could cause openssl to\nleak memory. This can be exploited through a Denial of Service attack. \n\nOpenSSL 0.9.8 DTLS users should upgrade to 0.9.8zb\nOpenSSL 1.0.0 DTLS users should upgrade to 1.0.0n. \nOpenSSL 1.0.1 DTLS users should upgrade to 1.0.1i. \n\nThanks to Adam Langley (Google) for discovering and researching this\nissue. This issue was reported to OpenSSL on 6th June 2014. \n\nThe fix was developed by Adam Langley. \n\nOpenSSL DTLS anonymous EC(DH) denial of service (CVE-2014-3510)\n===============================================================\n\nOpenSSL DTLS clients enabling anonymous (EC)DH ciphersuites are subject to a\ndenial of service attack. A malicious server can crash the client with a null\npointer dereference (read) by specifying an anonymous (EC)DH ciphersuite and\nsending carefully crafted handshake messages. \n\nOpenSSL 0.9.8 DTLS client users should upgrade to 0.9.8zb\nOpenSSL 1.0.0 DTLS client users should upgrade to 1.0.0n. \nOpenSSL 1.0.1 DTLS client users should upgrade to 1.0.1i. \n\nThanks to Felix Gr\u00f6bert (Google) for discovering and researching this issue. \nThis issue was reported to OpenSSL on 18th July 2014. \n\nThe fix was developed by Emilia K\u00e4sper of the OpenSSL development team. \n\nOpenSSL 1.0.1 SSL/TLS server users should upgrade to 1.0.1i. \n\nThanks to David Benjamin and Adam Langley (Google) for discovering and\nresearching this issue. This issue was reported to OpenSSL on 21st July 2014. \n\nThe fix was developed by David Benjamin. \n\n\nSRP buffer overrun (CVE-2014-3512)\n==================================\n\nA malicious client or server can send invalid SRP parameters and overrun\nan internal buffer. Only applications which are explicitly set up for SRP\nuse are affected. \n\nOpenSSL 1.0.1 SSL/TLS users should upgrade to 1.0.1i. \n\nThanks to Sean Devlin and Watson Ladd (Cryptography Services, NCC\nGroup) for discovering this issue. This issue was reported to OpenSSL\non 31st July 2014. \n\nThe fix was developed by Stephen Henson of the OpenSSL core team. \n\n\nReferences\n==========\n\nURL for this Security Advisory:\nhttps://www.openssl.org/news/secadv_20140806.txt\n\nNote: the online version of the advisory may be updated with additional\ndetails over time. \n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n+--------------------------+\npatches/packages/openssl-1.0.1i-i486-1_slack14.1.txz: Upgraded. \n This update fixes several security issues:\n Double Free when processing DTLS packets (CVE-2014-3505)\n DTLS memory exhaustion (CVE-2014-3506)\n DTLS memory leak from zero-length fragments (CVE-2014-3507)\n Information leak in pretty printing functions (CVE-2014-3508)\n Race condition in ssl_parse_serverhello_tlsext (CVE-2014-3509)\n OpenSSL DTLS anonymous EC(DH) denial of service (CVE-2014-3510)\n OpenSSL TLS protocol downgrade attack (CVE-2014-3511)\n SRP buffer overrun (CVE-2014-3512)\n Crash with SRP ciphersuite in Server Hello message (CVE-2014-5139)\n For more information, see:\n https://www.openssl.org/news/secadv_20140806.txt\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3505\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3506\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3507\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3508\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3509\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3510\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3511\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3512\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5139\n (* Security fix *)\npatches/packages/openssl-solibs-1.0.1i-i486-1_slack14.1.txz: Upgraded. \n (* Security fix *)\n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated packages for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssl-0.9.8zb-i486-1_slack13.0.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssl-solibs-0.9.8zb-i486-1_slack13.0.txz\n\nUpdated packages for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssl-0.9.8zb-x86_64-1_slack13.0.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssl-solibs-0.9.8zb-x86_64-1_slack13.0.txz\n\nUpdated packages for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/openssl-0.9.8zb-i486-1_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/openssl-solibs-0.9.8zb-i486-1_slack13.1.txz\n\nUpdated packages for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/openssl-0.9.8zb-x86_64-1_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/openssl-solibs-0.9.8zb-x86_64-1_slack13.1.txz\n\nUpdated packages for Slackware 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/openssl-0.9.8zb-i486-1_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/openssl-solibs-0.9.8zb-i486-1_slack13.37.txz\n\nUpdated packages for Slackware x86_64 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/openssl-0.9.8zb-x86_64-1_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/openssl-solibs-0.9.8zb-x86_64-1_slack13.37.txz\n\nUpdated packages for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-1.0.1i-i486-1_slack14.0.txz\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-solibs-1.0.1i-i486-1_slack14.0.txz\n\nUpdated packages for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-1.0.1i-x86_64-1_slack14.0.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-solibs-1.0.1i-x86_64-1_slack14.0.txz\n\nUpdated packages for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-1.0.1i-i486-1_slack14.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-solibs-1.0.1i-i486-1_slack14.1.txz\n\nUpdated packages for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-1.0.1i-x86_64-1_slack14.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-solibs-1.0.1i-x86_64-1_slack14.1.txz\n\nUpdated packages for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-1.0.1i-i486-1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-1.0.1i-i486-1.txz\n\nUpdated packages for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/openssl-solibs-1.0.1i-x86_64-1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssl-1.0.1i-x86_64-1.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 13.0 packages:\n30bdc015b10d8891b90d3f6ea34f5fdd openssl-0.9.8zb-i486-1_slack13.0.txz\n3dc4140c22c04c94e5e74386a5a1c200 openssl-solibs-0.9.8zb-i486-1_slack13.0.txz\n\nSlackware x86_64 13.0 packages:\n3da32f51273762d67bf9dbcc91af9413 openssl-0.9.8zb-x86_64-1_slack13.0.txz\n075e5d12e5b909ecac923cb210f83544 openssl-solibs-0.9.8zb-x86_64-1_slack13.0.txz\n\nSlackware 13.1 packages:\n3b7e2bb2b317bf72b8f9b2b7a14bddfb openssl-0.9.8zb-i486-1_slack13.1.txz\n92af0784eade0674332a56bfab73b97d openssl-solibs-0.9.8zb-i486-1_slack13.1.txz\n\nSlackware x86_64 13.1 packages:\ndf5f961109d7b50971660ca6a7d4c48c openssl-0.9.8zb-x86_64-1_slack13.1.txz\n582aaeae3d56730a2e1538a67d4e44da openssl-solibs-0.9.8zb-x86_64-1_slack13.1.txz\n\nSlackware 13.37 packages:\n546445d56d3b367fa0dd4e80859c4620 openssl-0.9.8zb-i486-1_slack13.37.txz\nb80e9df8cdd0649939ec2fab20d24691 openssl-solibs-0.9.8zb-i486-1_slack13.37.txz\n\nSlackware x86_64 13.37 packages:\n9c9ce97dc21340924a3e27c1a8047023 openssl-0.9.8zb-x86_64-1_slack13.37.txz\n0fe1931f2fc82fb8d5fbe72680caf843 openssl-solibs-0.9.8zb-x86_64-1_slack13.37.txz\n\nSlackware 14.0 packages:\nd1580f4b22b99cee42b22276653c8180 openssl-1.0.1i-i486-1_slack14.0.txz\nec93cec2bcab8ae7391a504573cbc231 openssl-solibs-1.0.1i-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 packages:\n329475de3759225b1d02aa7317b2eb58 openssl-1.0.1i-x86_64-1_slack14.0.txz\n25f2a198022d974534986a3913ca705c openssl-solibs-1.0.1i-x86_64-1_slack14.0.txz\n\nSlackware 14.1 packages:\n8336457bc31d44ebf502ffc4443f12f7 openssl-1.0.1i-i486-1_slack14.1.txz\n4b99ac357fbd3065c53367eea246b8c7 openssl-solibs-1.0.1i-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 packages:\nf2b8f81d9d7dc02e5d1011f663ccc95d openssl-1.0.1i-x86_64-1_slack14.1.txz\n4360abffbb57cb18ba0720f782d78250 openssl-solibs-1.0.1i-x86_64-1_slack14.1.txz\n\nSlackware -current packages:\n49ecd332a899cf742d3467a6efe44269 a/openssl-solibs-1.0.1i-i486-1.txz\n27da017c49045981b1793f105aff365f n/openssl-1.0.1i-i486-1.txz\n\nSlackware x86_64 -current packages:\n8d74f3d770802182137c84d925f58cbc a/openssl-solibs-1.0.1i-x86_64-1.txz\nfd9d94d3210f0aedf74959cb0887e2b8 n/openssl-1.0.1i-x86_64-1.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the packages as root:\n# upgradepkg openssl-1.0.1i-i486-1_slack14.1.txz openssl-solibs-1.0.1i-i486-1_slack14.1.txz\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list: |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message: |\n| |\n| unsubscribe slackware-security |\n| |\n| You will get a confirmation message back containing instructions to |\n| complete the process. Please do not reply to this email address. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04624296\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04624296\nVersion: 1\n\nHPSBMU03304 rev.1 - HP Insight Control server deployment on Linux and\nWindows, Remote Disclosure of Information\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2015-04-01\nLast Updated: 2015-04-01\n\nPotential Security Impact: Remote disclosure of information\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP System\nManagement Homepage (SMH), HP Smart Update Manager (SUM), and HP Version\nControl Agent (VCA) which are components of HP Insight Control server\ndeployment. These vulnerabilities are related to the SSLv3 vulnerability\nknown as \"Padding Oracle on Downgraded Legacy Encryption\" or \"POODLE\". The\ncomponents of HP Insight Control server deployment could be exploited\nremotely to allow disclosure of information. \n\nHP Insight Control server deployment includes HP System Management Homepage\n(SMH), HP Version Control Agent (VCA), and HP Smart Update Manager (SUM) and\ndeploys them through the following jobs. This bulletin provides the\ninformation needed to update the vulnerable components in HP Insight Control\nserver deployment. \n\nInstall HP Management Agents for Windows x86/x64\nInstall HP Management Agents for RHEL 5 x64\nInstall HP Management Agents for RHEL 6 x64\nInstall HP Management Agents for SLES 10 x64\nInstall HP Management Agents for SLES 11 x64\nUpgrade Proliant Firmware\n\nReferences:\n\nCVE-2014-3508\nCVE-2014-3509\nCVE-2014-3511\nCVE-2014-3513\nCVE-2014-3566\nCVE-2014-3567\nCVE-2014-3568\nCVE-2014-5139\nSSRT102004\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Insight Control server deployment v7.1.2, v7.2.0, v7.2.1, v7.2.2, v7.3.1\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2014-3508 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3\nCVE-2014-3509 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8\nCVE-2014-3511 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3\nCVE-2014-3513 (AV:N/AC:M/Au:N/C:N/I:N/A:C) 7.1\nCVE-2014-3566 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3\nCVE-2014-3567 (AV:N/AC:M/Au:N/C:N/I:N/A:C) 7.1\nCVE-2014-3568 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3\nCVE-2014-5139 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following instructions to resolve this vulnerability. \n\nNote: For HP Insight deployment Control server v7.1.2, v7.2.0, v7.2.1 and\nv7.2.2, you must upgrade to v7.3.1 and follow the steps from 1 to 11\nmentioned below to resolve the vulnerability. \n\nDelete the files smh*.exe from Component Copy Location listed in the\nfollowing table, rows 1 and 2. \nDelete the files vca*.exe/vcaamd64-*.exe from Component Copy Location listed\nin the following table, rows 3 and 4. \nDelete the files hpsmh-7.*.rpm\" from Component Copy Location listed in row 5. \nIn sequence, perform the steps from left to right in the following table. \nFirst, download components from Download Link; Second, rename the component\nas suggested in Rename to. Third, copy the component to the location\nspecified in Component Copy Location. \nTable Row Number\n Download Link\n Rename to\n Component Copy Location\n\n1\n http://www.hp.com/swpublishing/MTX-bd2042a1c7574aad90c4839efe\n smhamd64-cp023964.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2008\n\n2\n http://www.hp.com/swpublishing/MTX-062078f1ae354b7e99c86c151c\n smhx86-cp023963.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2008\n\n3\n http://www.hp.com/swpublishing/MTX-7b23e47d5d9b420b94bd1323eb\n vcax86 cp025295.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2008\n\n4\n http://www.hp.com/swpublishing/MTX-2557aa7dc1654cf6b547c1a9e4\n vcaamd64-cp025296.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2008\n\n5\n http://www.hp.com/swpublishing/MTX-5827037475e44abab586463723\n Do not rename the downloaded component for this step. \n \\\\express\\hpfeatures\\hpagents-sles11-x64\\components\n\n\\\\express\\hpfeatures\\hpagents-sles10-x64\\components\n\n\\\\express\\hpfeatures\\hpagents-rhel5-x64\\components\n\n\\\\express\\hpfeatures\\hpagents-rhel6-x64\\components\n\n6\n http://www.hp.com/swpublishing/MTX-57ab6bb78b6e47a18718f44133\n Do not rename the downloaded component for this step. \n \\\\express\\hpfeatures\\hpagents-sles11-x64\\components\n\n\\\\express\\hpfeatures\\hpagents-sles10-x64\\components\n\n\\\\express\\hpfeatures\\hpagents-rhel5-x64\\components\n\n\\\\express\\hpfeatures\\hpagents-rhel6-x64\\components\n\n7\n http://www.hp.com/swpublishing/MTX-34bcab41ac7e4db299e3f5f2f1\n smhx86-cp025274.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2003\n\n8\n http://www.hp.com/swpublishing/MTX-00eb9ac82e86449e8c3ba101bd\n smhamd64-cp025275.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2003\n\nDownload and extract the HP SUM component from\nftp://ftp.hp.com/pub/softlib2/software1/pubsw-windows/p991570621/v99346\n\nCopy all content from extracted folder and paste at\n\\\\eXpress\\hpfeatures\\fw-proLiant\\components\nInitiate Install HP Management Agents for SLES 11 x64 on the target running\nSLES11 x64. \nInitiate Install HP Management Agents for SLES 10 x64 on the target running\nSLES10 x64. \nInitiate Install HP Management Agents for RHEL 6 x64 on the target running\nRHEL 6 x64. \nInitiate Install HP Management Agents for RHEL 5 x64 on the target running\nRHEL 5 x64. \nInitiate Install HP Management Agents for Windows x86/x64 job on the target\nrunning Windows. \n\nHISTORY\nVersion:1 (rev.1) - 1 April 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Moderate: rhevm-spice-client security and bug fix update\nAdvisory ID: RHSA-2015:0197-01\nProduct: Red Hat Enterprise Virtualization\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2015-0197.html\nIssue date: 2014-07-25\nUpdated on: 2015-02-11\nCVE Names: CVE-2014-3509 CVE-2014-3511 \n=====================================================================\n\n1. Summary:\n\nUpdated rhevm-spice-client packages that fix two security issues and\nseveral bugs are now available for Red Hat Enterprise Virtualization\nManager 3. \n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRHEV-M 3.5 - noarch\n\n3. Description:\n\nRed Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems. (CVE-2014-3509)\n\nA flaw was found in the way OpenSSL handled fragmented handshake packets. (CVE-2014-3511)\n\nThis update also fixes the following bugs:\n\n* Previously, various clipboard managers, operating on the client or on the\nguest, would occasionally lose synchronization, which resulted in clipboard\ndata loss and the SPICE console freezing. Now, spice-gtk have been patched,\nsuch that clipboard synchronization does not freeze the SPICE console\nanymore. (BZ#1083489)\n\n* Prior to this update, when a SPICE console was launched from the Red Hat\nEnterprise Virtualization User Portal with the \u0027Native Client\u0027 invocation\nmethod and \u0027Open in Full Screen\u0027 selected, the displays of the guest\nvirtual machine were not always configured to match the client displays. \nAfter this update, the SPICE console will show a full-screen guest display\nfor each client monitor. (BZ#1076243)\n\n* A difference in behavior between Linux and Windows clients caused an\nextra nul character to be sent when pasting text in a guest machine from a\nWindows client. This invisible character was visible in some Java\napplications. With this update, the extra nul character is removed from\ntext strings and no more extraneous character would appear. (BZ#1090122)\n\n* Previously, If the clipboard is of type image/bmp, and the data is of 0\nsize, GTK+ will crash. With this update, the data size is checked first,\nand GTK+ no longer crashes when clipboard is of type image/bmp, and the\ndata is of 0 size. (BZ#1090433)\n\n* Modifier-only key combinations cannot be registered by users as hotkeys\nso if a user tries to set a modifier-only key sequence (for example,\n\u0027ctrl+alt\u0027) as the hotkey for releasing the cursor, it will fail, and the\nuser will be able to release the cursor from the window. With this update,\nwhen a modifier-only hotkey is attempted to be registered, it will fall\nback to the default cursor-release sequence (which happens to be\n\u0027ctrl+alt\u0027). (BZ#985319)\n\n* Display configuration sometimes used outdated information about the\nposition of the remote-viewer windows in order to align and configure the\nguest displays. Occasionally, this caused the guest displays to became\nunexpectedly swapped when a window is resized. With this update,\nremote-viewer will always use the current window locations to align\ndisplays, rather than using a possibly outdated cached location\ninformation. (BZ#1018182)\n\nAll rhevm-spice-client users are advised to upgrade to these updated\npackages, which contain backported patches to correct these issues. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1018145 - --full-screen=auto-conf sometimes (but frequently) doesn\u0027t work correctly\n1018182 - primary monitor is switched if some screen gets bigger then current primary screen\n1076243 - [BUG] RHEV SPICE console not opening in full screen or detecting resolution by default\n1083489 - [SPICE][BUG] Spice session freezes randomly\n1090122 - Pasting into java apps inserts unprintable character\n1090433 - [GTK][BUG] win32: add more clipboard data checks to avoid crash\n1103366 - Rebase virt-viewer to 0.6.0\n1105650 - Fix windows productversion to fit -z releases\n1115445 - in About dialog, hyphen version-build dividing hyphen is missing\n1127498 - CVE-2014-3509 openssl: race condition in ssl_parse_serverhello_tlsext\n1127504 - CVE-2014-3511 openssl: TLS protocol downgrade attack\n\n6. Package List:\n\nRHEV-M 3.5:\n\nSource:\nrhevm-spice-client-3.5-2.el6.src.rpm\n\nnoarch:\nrhevm-spice-client-x64-cab-3.5-2.el6.noarch.rpm\nrhevm-spice-client-x64-msi-3.5-2.el6.noarch.rpm\nrhevm-spice-client-x86-cab-3.5-2.el6.noarch.rpm\nrhevm-spice-client-x86-msi-3.5-2.el6.noarch.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2014-3509\nhttps://access.redhat.com/security/cve/CVE-2014-3511\nhttps://access.redhat.com/security/updates/classification/#moderate\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFU253LXlSAg2UNWIIRAjJEAKCrqGkFJHhLN3Iqt069y96etuCAxgCcCTWW\n1SViofNGiqbiufMWwY7okg4=\n=cjiU\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory GLSA 201412-39\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Normal\n Title: OpenSSL: Multiple vulnerabilities\n Date: December 26, 2014\n Bugs: #494816, #519264, #525468\n ID: 201412-39\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in OpenSSL, the worst of which\ncould result in Denial of Service or Man-in-the-Middle attacks. \n\nAffected packages\n=================\n\n -------------------------------------------------------------------\n Package / Vulnerable / Unaffected\n -------------------------------------------------------------------\n 1 dev-libs/openssl \u003c 1.0.1j *\u003e= 0.9.8z_p2\n \u003e= 1.0.1j\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in OpenSSL. Please review\nthe CVE identifiers referenced below for details. \n\nResolution\n==========\n\nAll OpenSSL 1.0.1 users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose \"\u003e=dev-libs/openssl-1.0.1j\"\n\nAll OpenSSL 0.9.8 users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose \"\u003e=dev-libs/openssl-0.9.8z_p2\"\n\nPackages which depend on this library may need to be recompiled. Tools\nsuch as revdep-rebuild may assist in identifying these packages. \n\nReferences\n==========\n\n[ 1 ] CVE-2013-6449\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6449\n[ 2 ] CVE-2013-6450\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6450\n[ 3 ] CVE-2014-3505\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3505\n[ 4 ] CVE-2014-3506\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3506\n[ 5 ] CVE-2014-3507\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3507\n[ 6 ] CVE-2014-3509\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3509\n[ 7 ] CVE-2014-3510\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3510\n[ 8 ] CVE-2014-3511\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3511\n[ 9 ] CVE-2014-3512\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3512\n[ 10 ] CVE-2014-3513\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3513\n[ 11 ] CVE-2014-3567\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3567\n[ 12 ] CVE-2014-3568\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3568\n[ 13 ] CVE-2014-5139\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-5139\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201412-39.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2014 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. \n\nReferences:\n\nCVE-2014-3508\nCVE-2014-3509\nCVE-2014-3511\nCVE-2014-3513\nCVE-2014-3566\nCVE-2014-3567\nCVE-2014-3568\nCVE-2014-5139\nSSRT101894\nSSRT101916\nSSRT101918\nSSRT101920\nSSRT101921\nSSRT101922\nSSRT101923\nSSRT101925\nSSRT101926\nSSRT101927\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. The HP Matrix\nOperating Environment v7.2.3 Update kit applicable to HP Matrix Operating\nEnvironment 7.2.x installations is available at the following location:\n\nhttps://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber\n=HPID\n\nNOTE: Please read the readme.txt file before proceeding with the\ninstallation. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n=============================================================================\nFreeBSD-SA-14:18.openssl Security Advisory\n The FreeBSD Project\n\nTopic: OpenSSL multiple vulnerabilities\n\nCategory: contrib\nModule: openssl\nAnnounced: 2014-09-09\nAffects: All supported versions of FreeBSD. \nCorrected: 2014-08-07 21:04:42 UTC (stable/10, 10.0-STABLE)\n 2014-09-09 10:09:46 UTC (releng/10.0, 10.0-RELEASE-p8)\n 2014-08-07 21:06:34 UTC (stable/9, 9.3-STABLE)\n 2014-09-09 10:13:46 UTC (releng/9.3, 9.3-RELEASE-p1)\n 2014-09-09 10:13:46 UTC (releng/9.2, 9.2-RELEASE-p11)\n 2014-09-09 10:13:46 UTC (releng/9.1, 9.1-RELEASE-p18)\n 2014-08-07 21:06:34 UTC (stable/8, 8.4-STABLE)\n 2014-09-09 10:13:46 UTC (releng/8.4, 8.4-RELEASE-p15)\nCVE Name: CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3510,\n CVE-2014-3509, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:http://security.FreeBSD.org/\u003e. Background\n\nFreeBSD includes software from the OpenSSL Project. The OpenSSL Project is\na collaborative effort to develop a robust, commercial-grade, full-featured\nOpen Source toolkit implementing the Secure Sockets Layer (SSL v2/v3)\nand Transport Layer Security (TLS v1) protocols as well as a full-strength\ngeneral purpose cryptography library. \n\nII. [CVE-2014-5139]\n\nIII. Impact\n\nA remote attacker may be able to cause a denial of service (application\ncrash, large memory consumption), obtain additional information,\ncause protocol downgrade. Additionally, a remote attacker may be able\nto run arbitrary code on a vulnerable system if the application has been\nset up for SRP. \n\nIV. Workaround\n\nNo workaround is available. \n\nV. Solution\n\nPerform one of the following:\n\n1) Upgrade your vulnerable system to a supported FreeBSD stable or\nrelease / security branch (releng) dated after the correction date. \n\n2) To update your vulnerable system via a source code patch:\n\nThe following patches have been verified to apply to the applicable\nFreeBSD release branches. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n[FreeBSD 10.0]\n# fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-10.0.patch\n# fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-10.0.patch.asc\n# gpg --verify openssl-10.0.patch.asc\n\n[FreeBSD 9.3]\n# fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.3.patch\n# fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.3.patch.asc\n# gpg --verify openssl-9.3.patch.asc\n\n[FreeBSD 9.2, 9.1, 8.4]\n# fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.patch\n# fetch http://security.FreeBSD.org/patches/SA-14:18/openssl-9.patch.asc\n# gpg --verify openssl-9.patch.asc\n\nb) Apply the patch. Execute the following commands as root:\n\n# cd /usr/src\n# patch \u003c /path/to/patch\n\nc) Recompile the operating system using buildworld and installworld as\ndescribed in \u003cURL:http://www.FreeBSD.org/handbook/makeworld.html\u003e. \n\nRestart all deamons using the library, or reboot the system. \n\n3) To update your vulnerable system via a binary patch:\n\nSystems running a RELEASE version of FreeBSD on the i386 or amd64\nplatforms can be updated via the freebsd-update(8) utility:\n\n# freebsd-update fetch\n# freebsd-update install\n\nVI. Correction details\n\nThe following list contains the correction revision numbers for each\naffected branch. \n\nBranch/path Revision\n- -------------------------------------------------------------------------\nstable/8/ r269687\nreleng/8.4/ r271305\nstable/9/ r269687\nreleng/9.1/ r271305\nreleng/9.2/ r271305\nreleng/9.3/ r271305\nstable/10/ r269686\nreleng/10.0/ r271304\n- -------------------------------------------------------------------------\n\nTo see which files were modified by a particular revision, run the\nfollowing command, replacing NNNNNN with the revision number, on a\nmachine with Subversion installed:\n\n# svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base\n\nOr visit the following URL, replacing NNNNNN with the revision number:\n\n\u003cURL:http://svnweb.freebsd.org/base?view=revision\u0026revision=NNNNNN\u003e\n\nVII. \n\nReferences:\n\nCVE-2014-0224 Remote Unauthorized Access, Disclosure of Information\nCVE-2014-3509 Remote Denial of Service (DoS)\nCVE-2014-3511 Remote Unauthorized Access, Disclosure of Information\nCVE-2014-5139 Remote Denial of Service (DoS)\nSSRT101818\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nNote: For versions not listed, please contact support:\n\nNote: ServiceCenter 6.2 is impacted only if using the Directory Services\nintegration feature with the SC LDAP over SSL (LDAPS) protocol. If this\nfeature is in use, HP recommends that ServiceCenter 6.2 customers upgrade to\nService Manager 7.11, 9.21, or 9.34, and then apply the patches listed below. \n\nPatch Version\n Package Name / SSO URL\n\nSM711P22\n AIX Server 7.11.720 p22\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00614\n\nHP Itanium Server 7.11.720 p22\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00615\n\nHP parisc Server 7.11.720 p22\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00616\n\nLinux x86 Server 7.11.720 p22\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00617\n\nSolaris Server 7.11.720 p22\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00618\n\nWindows Server 7.11.720 p22\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00619\n\nSM921P9\n AIX server 9.21.706 P9\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00621\n\nHPUX/IA server 9.21.706 P9\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00622\n\nHPUX/PA server 9.21.706 P9\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00623\n\nLinux server 9.21.706 P9\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00624\n\nSolaris server 9.21.706 P9\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00625\n\nWindows server 9.21.706 P9\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00626\n\nSM934P2\n AIX Server 9.34.2003 p2\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00605\n\nHP Itanium Server 9.34.2003 p2\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00606\n\nLinux Server 9.34.2003 p2\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00607\n\nSolaris Server 9.34.2003 p2\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00608\n\nWindows Server 9.34.2003 p2\n https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse\narch/document/LID/HPSM_00609\n\nHISTORY\nVersion:1 (rev.1) - 22 January 2015 Initial release\nVersion:2 (rev.2) - 23 January 2015 added note for versions not listed in\ntable",
"sources": [
{
"db": "NVD",
"id": "CVE-2014-3511"
},
{
"db": "BID",
"id": "69079"
},
{
"db": "PACKETSTORM",
"id": "127790"
},
{
"db": "PACKETSTORM",
"id": "169648"
},
{
"db": "PACKETSTORM",
"id": "127811"
},
{
"db": "PACKETSTORM",
"id": "131254"
},
{
"db": "PACKETSTORM",
"id": "130359"
},
{
"db": "PACKETSTORM",
"id": "132081"
},
{
"db": "PACKETSTORM",
"id": "137201"
},
{
"db": "PACKETSTORM",
"id": "137292"
},
{
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"db": "PACKETSTORM",
"id": "129721"
},
{
"db": "PACKETSTORM",
"id": "132467"
},
{
"db": "PACKETSTORM",
"id": "131014"
},
{
"db": "PACKETSTORM",
"id": "130815"
},
{
"db": "PACKETSTORM",
"id": "128214"
},
{
"db": "PACKETSTORM",
"id": "130868"
},
{
"db": "PACKETSTORM",
"id": "130299"
},
{
"db": "PACKETSTORM",
"id": "132085"
}
],
"trust": 2.7
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2014-3511",
"trust": 3.0
},
{
"db": "BID",
"id": "69079",
"trust": 1.4
},
{
"db": "SECUNIA",
"id": "59700",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61100",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60803",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "59710",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60810",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60917",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61017",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60921",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60221",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60022",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60938",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61139",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61043",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "59756",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61959",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "58962",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61775",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60377",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60684",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "61184",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "59887",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60890",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "60493",
"trust": 1.1
},
{
"db": "SECTRACK",
"id": "1030693",
"trust": 1.1
},
{
"db": "TENABLE",
"id": "TNS-2014-06",
"trust": 1.1
},
{
"db": "MCAFEE",
"id": "SB10084",
"trust": 1.1
},
{
"db": "JUNIPER",
"id": "JSA10649",
"trust": 0.3
},
{
"db": "VULMON",
"id": "CVE-2014-3511",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130299",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130868",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "128214",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130815",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "131014",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "132467",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129721",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "132085",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "127790",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "137292",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "137201",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "132081",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130359",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "131254",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "127811",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "169648",
"trust": 0.1
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"db": "BID",
"id": "69079"
},
{
"db": "PACKETSTORM",
"id": "130299"
},
{
"db": "PACKETSTORM",
"id": "130868"
},
{
"db": "PACKETSTORM",
"id": "128214"
},
{
"db": "PACKETSTORM",
"id": "130815"
},
{
"db": "PACKETSTORM",
"id": "131014"
},
{
"db": "PACKETSTORM",
"id": "132467"
},
{
"db": "PACKETSTORM",
"id": "129721"
},
{
"db": "PACKETSTORM",
"id": "132085"
},
{
"db": "PACKETSTORM",
"id": "127790"
},
{
"db": "PACKETSTORM",
"id": "137292"
},
{
"db": "PACKETSTORM",
"id": "137201"
},
{
"db": "PACKETSTORM",
"id": "132081"
},
{
"db": "PACKETSTORM",
"id": "130359"
},
{
"db": "PACKETSTORM",
"id": "131254"
},
{
"db": "PACKETSTORM",
"id": "127811"
},
{
"db": "PACKETSTORM",
"id": "169648"
},
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"id": "VAR-201408-0081",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.44401007833333334
},
"last_update_date": "2024-07-23T21:31:18.574000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Red Hat: Critical: rhev-hypervisor6 security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20150126 - security advisory"
},
{
"title": "Tenable Security Advisories: [R4] Tenable Products Affected by OpenSSL Protocol Downgrade Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=tns-2014-06"
},
{
"title": "Ubuntu Security Notice: openssl vulnerabilities",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-2308-1"
},
{
"title": "Debian Security Advisories: DSA-2998-1 openssl -- security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=bfd576c692d8814b2a331baf29ad367c"
},
{
"title": "Amazon Linux AMI: ALAS-2014-391",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2014-391"
},
{
"title": "Symantec Security Advisories: SA85 : OpenSSL Security Advisory 06-Aug-2014",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=02a206cf2efb06aecdaf29aeca851b55"
},
{
"title": "Splunk Security Announcements: Splunk Enterprise 6.1.4 and 5.0.10 address four vulnerabilities",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=splunk_security_announcements\u0026qid=f5716086497f074005596fe8e0bc5dce"
},
{
"title": "Citrix Security Bulletins: Multiple Security Vulnerabilities in Citrix NetScaler Platform IPMI Lights Out Management (LOM) firmware",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=eb059834b7f24e2562bcf592b6d0afbc"
},
{
"title": "oval",
"trust": 0.1,
"url": "https://github.com/jumanjihouse/oval "
},
{
"title": "wormhole",
"trust": 0.1,
"url": "https://github.com/jumanjihouse/wormhole "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2014-3511"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-noinfo",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.6,
"url": "https://www.openssl.org/news/secadv_20140806.txt"
},
{
"trust": 1.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3509"
},
{
"trust": 1.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3511"
},
{
"trust": 1.4,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
},
{
"trust": 1.4,
"url": "https://support.citrix.com/article/ctx216642"
},
{
"trust": 1.4,
"url": "https://www.freebsd.org/security/advisories/freebsd-sa-14:18.openssl.asc"
},
{
"trust": 1.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-5139"
},
{
"trust": 1.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3508"
},
{
"trust": 1.2,
"url": "http://rhn.redhat.com/errata/rhsa-2015-0197.html"
},
{
"trust": 1.2,
"url": "http://security.gentoo.org/glsa/glsa-201412-39.xml"
},
{
"trust": 1.1,
"url": "ftp://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2014-008.txt.asc"
},
{
"trust": 1.1,
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"trust": 1.1,
"url": "http://linux.oracle.com/errata/elsa-2014-1052.html"
},
{
"trust": 1.1,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-august/136470.html"
},
{
"trust": 1.1,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-august/136473.html"
},
{
"trust": 1.1,
"url": "http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
},
{
"trust": 1.1,
"url": "http://rhn.redhat.com/errata/rhsa-2015-0126.html"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/58962"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/59700"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/59710"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/59756"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/59887"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60022"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60221"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60377"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60493"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60684"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60803"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60810"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60890"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60917"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60921"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/60938"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61017"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61043"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61100"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61139"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61184"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61775"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/61959"
},
{
"trust": 1.1,
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html"
},
{
"trust": 1.1,
"url": "http://www.arubanetworks.com/support/alerts/aid-08182014.txt"
},
{
"trust": 1.1,
"url": "http://www.debian.org/security/2014/dsa-2998"
},
{
"trust": 1.1,
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/bid/69079"
},
{
"trust": 1.1,
"url": "http://www.securitytracker.com/id/1030693"
},
{
"trust": 1.1,
"url": "http://www.splunk.com/view/sp-caaanhs"
},
{
"trust": 1.1,
"url": "http://www.tenable.com/security/tns-2014-06"
},
{
"trust": 1.1,
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020240"
},
{
"trust": 1.1,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"trust": 1.1,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"trust": 1.1,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1127504"
},
{
"trust": 1.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95162"
},
{
"trust": 1.1,
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05150888"
},
{
"trust": 1.1,
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05158380"
},
{
"trust": 1.1,
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10084"
},
{
"trust": 1.1,
"url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-september/000196.html"
},
{
"trust": 1.1,
"url": "https://techzone.ergon.ch/cve-2014-3511"
},
{
"trust": 1.0,
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3ba=commit%3bh=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"trust": 0.9,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3567"
},
{
"trust": 0.9,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3513"
},
{
"trust": 0.9,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3568"
},
{
"trust": 0.8,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.8,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.8,
"url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
},
{
"trust": 0.7,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3566"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3512"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3510"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3507"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3506"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3505"
},
{
"trust": 0.4,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_"
},
{
"trust": 0.4,
"url": "https://h20392.www2.hp.com/portal/swdepot/displayproductinfo.do?productnumber"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682663"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021317"
},
{
"trust": 0.3,
"url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_wan_boot"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21684903"
},
{
"trust": 0.3,
"url": "http://openssl.org/"
},
{
"trust": 0.3,
"url": "http://www.ibm.com/support/docview.wss?uid=ssg1s1004917"
},
{
"trust": 0.3,
"url": "http://www.ibm.com/support/docview.wss?uid=swg21686583"
},
{
"trust": 0.3,
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5096266"
},
{
"trust": 0.3,
"url": "http://www.ibm.com/support/docview.wss?uid=ssg1s1004931"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21686126"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004872"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21691210"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04574073"
},
{
"trust": 0.3,
"url": "http://seclists.org/bugtraq/2015/mar/84"
},
{
"trust": 0.3,
"url": "http://seclists.org/bugtraq/2015/feb/151"
},
{
"trust": 0.3,
"url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10649\u0026cat=sirt_1\u0026actp=list"
},
{
"trust": 0.3,
"url": "aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/100182969"
},
{
"trust": 0.3,
"url": "http://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04512909"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04624296"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05150888"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05158380"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21684570"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685467"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21682293"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097658"
},
{
"trust": 0.3,
"url": "https://rhn.redhat.com/errata/rhsa-2014-1052.html"
},
{
"trust": 0.3,
"url": "https://rhn.redhat.com/errata/rhsa-2014-1054.html"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21684913"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21691014"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=nas8n1020240"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21715901"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21691005"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963783"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21683389"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097903"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098264"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682034"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098252"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098585"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21689886"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686182"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682016"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21685967"
},
{
"trust": 0.3,
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5096510"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687099"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21691162"
},
{
"trust": 0.3,
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15564.html?ref=rss"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1007987"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966557"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683744"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2009-3555"
},
{
"trust": 0.2,
"url": "http://www.hpe.com/support/security_bulletin_archive"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-1790"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-0705"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-1788"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-1792"
},
{
"trust": 0.2,
"url": "http://www.hpe.com/support/subscriber_choice"
},
{
"trust": 0.2,
"url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05131085"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-3195"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-0799"
},
{
"trust": 0.2,
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_n"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-1789"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-1791"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-7501"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2017"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-6565"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-0205"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3569"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/.html"
},
{
"trust": 0.1,
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=280b1f1ad12131defcd986676a8fc9717aaa601b"
},
{
"trust": 0.1,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=35208"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://www.rapid7.com/db/vulnerabilities/oracle-solaris-cve-2014-3511"
},
{
"trust": 0.1,
"url": "https://usn.ubuntu.com/2308-1/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-0224"
},
{
"trust": 0.1,
"url": "https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetse"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-0195"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-0160"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3510\u003e"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3507\u003e"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3506\u003e"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3512\u003e"
},
{
"trust": 0.1,
"url": "http://www.freebsd.org/handbook/makeworld.html\u003e."
},
{
"trust": 0.1,
"url": "https://www.openssl.org/news/secadv_20140806.txt\u003e"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3508\u003e"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/patches/sa-14:18/openssl-9.patch"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/patches/sa-14:18/openssl-10.0.patch"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/\u003e."
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/advisories/freebsd-sa-14:18.openssl.asc\u003e"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3511\u003e"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/patches/sa-14:18/openssl-9.patch.asc"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3509\u003e"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/patches/sa-14:18/openssl-9.3.patch.asc"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/patches/sa-14:18/openssl-10.0.patch.asc"
},
{
"trust": 0.1,
"url": "http://security.freebsd.org/patches/sa-14:18/openssl-9.3.patch"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-5139\u003e"
},
{
"trust": 0.1,
"url": "http://svnweb.freebsd.org/base?view=revision\u0026revision=nnnnnn\u003e"
},
{
"trust": 0.1,
"url": "http://h20565.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04486577-1"
},
{
"trust": 0.1,
"url": "https://technet.microsoft.com/library/security/3009008"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3513"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6450"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3568"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6449"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3506"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-6450"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-5139"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3507"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3512"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3567"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3509"
},
{
"trust": 0.1,
"url": "http://creativecommons.org/licenses/by-sa/2.5"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-6449"
},
{
"trust": 0.1,
"url": "http://security.gentoo.org/"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3510"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3505"
},
{
"trust": 0.1,
"url": "https://bugs.gentoo.org."
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3511"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openssl/0.9.8k-7ubuntu8.20"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openssl/1.0.1-4ubuntu5.17"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openssl/1.0.1f-1ubuntu2.5"
},
{
"trust": 0.1,
"url": "http://www.ubuntu.com/usn/usn-2308-1"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-7995"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2007-6750"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-8035"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-3237"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2015"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-0728"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-7547"
},
{
"trust": 0.1,
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_"
},
{
"trust": 0.1,
"url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05111017"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-4969"
},
{
"trust": 0.1,
"url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05131044"
},
{
"trust": 0.1,
"url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05130958"
},
{
"trust": 0.1,
"url": "http://www.hpe.com/info/insightcontrol"
},
{
"trust": 0.1,
"url": "http://www.hpe.com/info/insightmanagement"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2019"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2020"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2018"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2022"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2027"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2026"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-2021"
},
{
"trust": 0.1,
"url": "http://h18013.www1.hp.com/products/servers/management/hpsim/download.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.1,
"url": "https://bugzilla.redhat.com/):"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/cve/cve-2014-3509"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/key/"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/articles/11258"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/cve/cve-2014-3511"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-2557aa7dc1654cf6b547c1a9e4"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-bd2042a1c7574aad90c4839efe"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-57ab6bb78b6e47a18718f44133"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-00eb9ac82e86449e8c3ba101bd"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-34bcab41ac7e4db299e3f5f2f1"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-062078f1ae354b7e99c86c151c"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-5827037475e44abab586463723"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-7b23e47d5d9b420b94bd1323eb"
},
{
"trust": 0.1,
"url": "http://slackware.com"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3510"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3509"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3511"
},
{
"trust": 0.1,
"url": "http://slackware.com/gpg-key"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3506"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3512"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3505"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3508"
},
{
"trust": 0.1,
"url": "http://osuosl.org)"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-5139"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3507"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"db": "BID",
"id": "69079"
},
{
"db": "PACKETSTORM",
"id": "130299"
},
{
"db": "PACKETSTORM",
"id": "130868"
},
{
"db": "PACKETSTORM",
"id": "128214"
},
{
"db": "PACKETSTORM",
"id": "130815"
},
{
"db": "PACKETSTORM",
"id": "131014"
},
{
"db": "PACKETSTORM",
"id": "132467"
},
{
"db": "PACKETSTORM",
"id": "129721"
},
{
"db": "PACKETSTORM",
"id": "132085"
},
{
"db": "PACKETSTORM",
"id": "127790"
},
{
"db": "PACKETSTORM",
"id": "137292"
},
{
"db": "PACKETSTORM",
"id": "137201"
},
{
"db": "PACKETSTORM",
"id": "132081"
},
{
"db": "PACKETSTORM",
"id": "130359"
},
{
"db": "PACKETSTORM",
"id": "131254"
},
{
"db": "PACKETSTORM",
"id": "127811"
},
{
"db": "PACKETSTORM",
"id": "169648"
},
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"db": "BID",
"id": "69079"
},
{
"db": "PACKETSTORM",
"id": "130299"
},
{
"db": "PACKETSTORM",
"id": "130868"
},
{
"db": "PACKETSTORM",
"id": "128214"
},
{
"db": "PACKETSTORM",
"id": "130815"
},
{
"db": "PACKETSTORM",
"id": "131014"
},
{
"db": "PACKETSTORM",
"id": "132467"
},
{
"db": "PACKETSTORM",
"id": "129721"
},
{
"db": "PACKETSTORM",
"id": "132085"
},
{
"db": "PACKETSTORM",
"id": "127790"
},
{
"db": "PACKETSTORM",
"id": "137292"
},
{
"db": "PACKETSTORM",
"id": "137201"
},
{
"db": "PACKETSTORM",
"id": "132081"
},
{
"db": "PACKETSTORM",
"id": "130359"
},
{
"db": "PACKETSTORM",
"id": "131254"
},
{
"db": "PACKETSTORM",
"id": "127811"
},
{
"db": "PACKETSTORM",
"id": "169648"
},
{
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2014-08-13T00:00:00",
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"date": "2014-08-06T00:00:00",
"db": "BID",
"id": "69079"
},
{
"date": "2015-02-09T21:09:18",
"db": "PACKETSTORM",
"id": "130299"
},
{
"date": "2015-03-18T00:44:34",
"db": "PACKETSTORM",
"id": "130868"
},
{
"date": "2014-09-09T17:32:22",
"db": "PACKETSTORM",
"id": "128214"
},
{
"date": "2015-03-13T17:11:00",
"db": "PACKETSTORM",
"id": "130815"
},
{
"date": "2015-03-25T00:42:25",
"db": "PACKETSTORM",
"id": "131014"
},
{
"date": "2015-06-29T15:35:42",
"db": "PACKETSTORM",
"id": "132467"
},
{
"date": "2014-12-26T15:46:37",
"db": "PACKETSTORM",
"id": "129721"
},
{
"date": "2015-05-29T23:37:43",
"db": "PACKETSTORM",
"id": "132085"
},
{
"date": "2014-08-08T21:44:17",
"db": "PACKETSTORM",
"id": "127790"
},
{
"date": "2016-06-02T19:12:12",
"db": "PACKETSTORM",
"id": "137292"
},
{
"date": "2016-05-26T09:22:00",
"db": "PACKETSTORM",
"id": "137201"
},
{
"date": "2015-05-29T23:37:11",
"db": "PACKETSTORM",
"id": "132081"
},
{
"date": "2015-02-12T00:29:07",
"db": "PACKETSTORM",
"id": "130359"
},
{
"date": "2015-04-02T00:37:56",
"db": "PACKETSTORM",
"id": "131254"
},
{
"date": "2014-08-11T11:11:00",
"db": "PACKETSTORM",
"id": "127811"
},
{
"date": "2014-08-06T12:12:12",
"db": "PACKETSTORM",
"id": "169648"
},
{
"date": "2014-08-13T23:55:07.623000",
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-11-15T00:00:00",
"db": "VULMON",
"id": "CVE-2014-3511"
},
{
"date": "2016-09-09T15:00:00",
"db": "BID",
"id": "69079"
},
{
"date": "2023-11-07T02:20:10.770000",
"db": "NVD",
"id": "CVE-2014-3511"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "network",
"sources": [
{
"db": "BID",
"id": "69079"
}
],
"trust": 0.3
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "OpenSSL CVE-2014-3511 Man in the Middle Security Bypass Vulnerability",
"sources": [
{
"db": "BID",
"id": "69079"
}
],
"trust": 0.3
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Design Error",
"sources": [
{
"db": "BID",
"id": "69079"
}
],
"trust": 0.3
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…