Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

SUSE: 2018:3994-1 Moderate: Compat-OpenSSL097g Security Update for SAP

suse
Calendar Grey December 6, 2018
Dist Suse Esm H88
SUSE Security Patch for compat-openssl097g resolves a significant vulnerability with setup guidelines.
An update that solves one vulnerability and has one errata is now available

Summary

This update for compat-openssl097g fixes the following issues: Security issue fixed: - CVE-2016-8610: Adjusted current fix and add missing error string (bsc#1110018). Non-security issue fixed: - Fixed timing vulnerability in DSA signature generation (bsc#1113742). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 11-SP4: zypper in -t patch slesappsp4-compat-openssl097g-13896=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-compat-openssl097g-13896=1 Package List: - SUSE Linux Enterprise Server for SAP 11-SP4 (ppc64 x86_64): compat-openssl097g-0.9.7g-146.22.51.8.1

References

#1110018 #1113742

Cross- CVE-2016-8610

Affected Products:

SUSE Linux Enterprise Server for SAP 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2016-8610.html

https://bugzilla.suse.com/1110018

https://bugzilla.suse.com/1113742

Announcement ID: SUSE-SU-2018:3994-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.