New Search

SUSE-SU-2014:1387-1 -- Security update for OpenSSL (important)

oval:org.mitre.oval:def:28457

This OpenSSL update fixes the following issues: * Session Ticket Memory Leak (CVE-2014-3567) * Build option no-ssl3 is incomplete ((CVE-2014-3568) * Add support for TLS_FALLBACK_SCSV to mitigate CVE-2014-3566 (POODLE) Security Issues: * CVE-2014-3567 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567> * CVE-2014-3566 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566> * CVE-2014-3568 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568>

Family:
unix
Status:
ACCEPTED
Platform(s):
  • SUSE Linux Enterprise Server 10
Class:
patch
Reference(s):
  • SUSE-SU-2014:1387-1
  • CVE-2014-3567
  • CVE-2014-3566
  • CVE-2014-3568
Product(s):
  • OpenSSL