Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

SUSE 10 SP4: 2012:0637-1 Important: OpenSSL Memory Corruption Fix

suse
Calendar Grey May 23, 2012
Dist Suse Esm H88
SUSE Software Patch addresses critical openssl flaws, enhancing defenses against data breaches and integrity issues. Update immediately.
An update that solves one vulnerability and has one errata An update that solves one vulnerability and has one errata An update that solves one vulnerability and has one errata is ...

Summary

This update of openssl fixes an integer conversation issue which could cause a heap-based memory corruption (CVE-2012-2110 ). Additionally, a check for negative buffer length values was added ( CVE-2012-2131 ) and a memory leak when creating public keys fixed. Package List: - SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64): openssl-0.9.8a-18.68.1 openssl-devel-0.9.8a-18.68.1 openssl-doc-0.9.8a-18.68.1 - SUSE Linux Enterprise Server 10 SP4 (s390x x86_64): openssl-32bit-0.9.8a-18.68.1 openssl-devel-32bit-0.9.8a-18.68.1 - SUSE Linux Enterprise Server 10 SP4 (ia64): openssl-x86-0.9.8a-18.68.1

Topics%20covered

Topics Covered

security advisory software update memory corruption important SUSE openssl administrative tasks

References

#749735 #758060

Cross- CVE-2012-2110

Affected Products:

SUSE Linux Enterprise Server 10 SP4

SUSE Linux Enterprise Desktop 10 SP4

SLE SDK 10 SP4

https://www.suse.com/security/cve/CVE-2012-2110.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2012:0637-1
Rating: important

Topics%20covered

Topics Covered

security advisory software update memory corruption important SUSE openssl administrative tasks

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here