Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

SUSE: 2019:1141-1 Moderate: OpenSSL 1_1 Security Update Details

suse
Calendar Grey May 3, 2019
Dist Suse Esm H88
SUSE Security Bulletin issues critical patches for openssl-1_1 to improve system integrity and interoperability.
An update that contains security fixes can now be installed

Summary

This update for openssl-1_1 to version 1.1.1b fixes the following issues: - Changed the info callback signals for the start and end of a post-handshake message exchange in TLSv1.3. - Fixed a bug in DTLS over SCTP. This breaks interoperability with older versions of OpenSSL like OpenSSL 1.1.0 and OpenSSL 1.0.2. - Fixed the handling of strerror_r with glibc. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP4: zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-1141=1 - SUSE Linux Enterprise Server 12-SP4: zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-1141=1 - SUSE Linux Enterprise Desktop 12-SP4:

References

#1133925

Affected Products:

SUSE Linux Enterprise Software Development Kit 12-SP4

SUSE Linux Enterprise Server 12-SP4

SUSE Linux Enterprise Desktop 12-SP4

https://bugzilla.suse.com/1133925

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2019:1141-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.