Explore top 10 tips to secure your open-source projects now. Read More
×
Advisory ID: 29171 Released: Tue Jun 20 12:29:00 2023 Summary: Security update for openssl-1_1 Type: security Severity: important Advisory ID: SUSE-RU-2023:2557-1 Released: Tue Jun 20 18:00:45 2023 Summary: Recommended update for suseconnect-ng Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:2571-1 Released: Wed Jun 21 13:26:09 2023
References : 1171511 1194557 1201627 1202234 1203300 1203393 1206674 1207004
1207071 1207534 1208074 1209233 1209565 1210277 1210298 1210652
1211026 1211261 1211261 1211418 1211419 1211430 1211578 1211588
1211612 1211647 1211754 1212187 1212187 1212222 1212222 1212516
1212517 1212544 1212567 1212662 CVE-2022-2084 CVE-2022-4304 CVE-2023-1786
CVE-2023-2602 CVE-2023-2603 CVE-2023-2650 CVE-2023-2828 CVE-2023-2911
1201627,1207534,1211430,CVE-2022-4304,CVE-2023-2650
This update for openssl-1_1 fixes the following issues:
- CVE-2023-2650: Fixed possible denial of service translating ASN.1 object identifiers (bsc#1211430).
- CVE-2022-4304: Reworked the fix for the Timing-Oracle in RSA decryption.
The previous fix for this timing side channel turned out to cause a
Get the latest Linux and open source security news straight to your inbox.