Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 9 articles for you...
100
security advisorydenial of servicesecurity fixSUSE: 2023:4649-1 critical: OpenSSL-3 DoS risk resolved
* bsc#1194187 * bsc#1207472 * bsc#1216922 Cross-References: . # Security update for openssl-3 Announcement ID: SUSE-SU-2023:4649-1 Rating: important References: * bsc#1194187 * bsc#1207472 * bsc#1216922 Cross-References: * CVE-2023-5678 CVSS scores: * CVE-2023-5678 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-5678 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP4 * openSUSE Leap 15.4 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for openssl-3 fixes the following issues: * CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922). Bug fixes: * The default /etc/ssl/openssl3.cnf file will include any configuration files that other packages might place into /etc/ssl/engines3.d/ and /etc/ssl/engdef3.d/. * Create the two new necessary directores for the above. [bsc#1194187, bsc#1207472] ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-4649=1 SUSE-2023-4649=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patchSUSE-SLE-Micro-5.3-2023-4649=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4649=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4649=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4649=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4649=1 * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-4649=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-4649=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * openssl-3-debugsource-3.0.8-150400.4.42.1 * libopenssl-3-devel-3.0.8-150400.4.42.1 * libopenssl3-3.0.8-150400.4.42.1 * openssl-3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openSUSE Leap 15.4 (x86_64) * libopenssl-3-devel-32bit-3.0.8-150400.4.42.1 * libopenssl3-32bit-debuginfo-3.0.8-150400.4.42.1 * libopenssl3-32bit-3.0.8-150400.4.42.1 * openSUSE Leap 15.4 (noarch) * openssl-3-doc-3.0.8-150400.4.42.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libopenssl3-64bit-3.0.8-150400.4.42.1 * libopenssl-3-devel-64bit-3.0.8-150400.4.42.1 * libopenssl3-64bit-debuginfo-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * openssl-3-debugsource-3.0.8-150400.4.42.1 * libopenssl-3-devel-3.0.8-150400.4.42.1 * libopenssl3-3.0.8-150400.4.42.1 * openssl-3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openSUSE Leap Micro 5.3 (aarch64 ppc64le s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * openSUSE Leap Micro 5.4 (aarch64 ppc64le s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 ## References: * https://www.suse.com/security/cve/CVE-2023-5678.html * https://bugzilla.suse.com/show_bug.cgi?id=1194187 * https://bugzilla.suse.com/show_bug.cgi?id=1207472 * https://bugzilla.suse.com/show_bug.cgi?id=1216922 . An important update for openssl-3 on SUSE addressing a denial-of-service flaw. Essential guidance for implementing the update is included.. SUSE Update, OpenSSL Fix, DoS Mitigation. . Severity: Important. LinuxSecurity.com Team
Dec 14, 2023
•Important
SuSE
100
security advisorydenial of servicesecurity updateSUSE SLE-Micro 5.3 Toolbox Security Update - SUSE-CU-2023:3801-1 Important
The container suse/sle-micro/5.3/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.3/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3801-1 Container Tags : suse/sle-micro/5.3/toolbox:12.1 , suse/sle-micro/5.3/toolbox:12.1-5.2.258 , suse/sle-micro/5.3/toolbox:latest Container Release : 5.2.258 Severity : important Type : security References : 1216922 CVE-2023-5678 ----------------------------------------------------------------- The container suse/sle-micro/5.3/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4524-1 Released: Tue Nov 21 17:51:28 2023 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1216922,CVE-2023-5678 This update for openssl-1_1 fixes the following issues: - CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922). The following package changes have been done: - libopenssl1_1-hmac-1.1.1l-150400.7.60.2 updated - libopenssl1_1-1.1.1l-150400.7.60.2 updated - openssl-1_1-1.1.1l-150400.7.60.2 updated - container:sles15-image-15.0.0-27.14.120 updated . SUSE Container Patch Notice: suse/sle-micro/5.3/toolbox Security patches addressing vulnerabilities in openssl components. SUSE Container Update, Toolbox Security, OpenSSL Patch, Denial of Service Fix. . Severity: Important. LinuxSecurity.com Team
Nov 22, 2023
•Important
SuSE
202
security advisoryimportantsystem updateopenSUSE Leap 15.5 Security Advisory: 2023:4190-1 Important OpenSSL-3 Issue
This update for openssl-3 fixes the following issues: CVE-2023-5363: Incorrect cipher key and IV length processing. (bsc#1216163) CVE-2023-3817: Add test of DH_check() with q = p + 1. (bsc#1213853). # Security update for openssl-3 Announcement ID: SUSE-SU-2023:4190-1 Rating: important References: * bsc#1213853 * bsc#1216163 Cross-References: * CVE-2023-3817 * CVE-2023-5363 CVSS scores: * CVE-2023-3817 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-3817 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-5363 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for openssl-3 fixes the following issues: * CVE-2023-5363: Incorrect cipher key and IV length processing. (bsc#1216163) * CVE-2023-3817: Add test of DH_check() with q = p + 1. (bsc#1213853) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2023-4190=1 openSUSE-SLE-15.5-2023-4190=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-4190=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libopenssl3-3.0.8-150500.5.14.1 * openssl-3-debugsource-3.0.8-150500.5.14.1 * openssl-3-debuginfo-3.0.8-150500.5.14.1 * openssl-3-3.0.8-150500.5.14.1 * libopenssl-3-devel-3.0.8-150500.5.14.1 * libopenssl3-debuginfo-3.0.8-150500.5.14.1 * openSUSE Leap 15.5 (x86_64) *libopenssl3-32bit-3.0.8-150500.5.14.1 * libopenssl-3-devel-32bit-3.0.8-150500.5.14.1 * libopenssl3-32bit-debuginfo-3.0.8-150500.5.14.1 * openSUSE Leap 15.5 (noarch) * openssl-3-doc-3.0.8-150500.5.14.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libopenssl3-64bit-debuginfo-3.0.8-150500.5.14.1 * libopenssl-3-devel-64bit-3.0.8-150500.5.14.1 * libopenssl3-64bit-3.0.8-150500.5.14.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libopenssl3-3.0.8-150500.5.14.1 * openssl-3-debugsource-3.0.8-150500.5.14.1 * openssl-3-debuginfo-3.0.8-150500.5.14.1 * openssl-3-3.0.8-150500.5.14.1 * libopenssl-3-devel-3.0.8-150500.5.14.1 * libopenssl3-debuginfo-3.0.8-150500.5.14.1 ## References: * https://www.suse.com/security/cve/CVE-2023-3817.html * https://www.suse.com/security/cve/CVE-2023-5363.html * https://bugzilla.suse.com/show_bug.cgi?id=1213853 * https://bugzilla.suse.com/show_bug.cgi?id=1216163 . Measures to address OpenSSL-3 security flaws in openSUSE, safeguarding system stability and protecting against severe risks.. OpenSUSE, OpenSSL Patch, Threat Management, Security Fix, Critical Update. . Severity: Important. LinuxSecurity.com Team
Oct 25, 2023
•Important
OpenSUSE
100
security advisorySUSEDoS preventionSUSE: 2023:2577-1 Moderate: bci/php-fpm Denial of Service Prevention
The container bci/php-fpm was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/php-fpm ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2577-1 Container Tags : bci/php-fpm:8 , bci/php-fpm:8-6.22 Container Release : 6.22 Severity : moderate Type : security References : 1213853 CVE-2023-3817 ----------------------------------------------------------------- The container bci/php-fpm was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3242-1 Released: Tue Aug 8 18:19:40 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213853,CVE-2023-3817 This update for openssl-1_1 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. (bsc#1213853) The following package changes have been done: - libopenssl1_1-1.1.1l-150500.17.15.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.15.1 updated - container:sles15-image-15.0.0-36.5.22 updated . The SUSE Container Update Advisory delivers important updates for the bci/php-fpm image, applying necessary security fixes for vulnerabilities like CVE-2023-3817 and others.. SUSE Container Update,bci/php-fpm,security advisory,openssl patch. . LinuxSecurity.com Team
Aug 11, 2023
SuSE
100
security advisoryDoSmoderate severitySUSE: 2023:2547-1 Moderate: suse/registry DoS Security Update
The container suse/registry was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/registry ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2547-1 Container Tags : suse/registry:2.8 , suse/registry:2.8-14.15 , suse/registry:latest Container Release : 14.15 Severity : moderate Type : security References : 1213853 CVE-2023-3817 ----------------------------------------------------------------- The container suse/registry was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3242-1 Released: Tue Aug 8 18:19:40 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213853,CVE-2023-3817 This update for openssl-1_1 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. (bsc#1213853) The following package changes have been done: - libopenssl1_1-1.1.1l-150500.17.15.1 updated - openssl-1_1-1.1.1l-150500.17.15.1 updated . SUSE Container Update Notice for suse/registry features a significant security fix concerning CVE-2023-3817.. SUSE Container Update, SUSE Security Advisory, registry Update, openssl Security Patch. . LinuxSecurity.com Team
Aug 10, 2023
SuSE
100
security advisorysecurity updatemoderate severitySUSE: 2023:2446-1 Moderate: bci/openjdk Security Update Details
The container bci/openjdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/openjdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2446-1 Container Tags : bci/openjdk:17 , bci/openjdk:17-10.17 , bci/openjdk:latest Container Release : 10.17 Severity : moderate Type : security References : 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container bci/openjdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2965-1 Released: Tue Jul 25 12:30:22 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2966-1 Released: Tue Jul 25 14:26:14 2023 Summary: Recommended update for libxml2 Type: recommended Severity: moderate References: This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) The following package changes have been done: - libxml2-2-2.10.3-150500.5.5.1 updated - libopenssl1_1-1.1.1l-150500.17.9.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.9.1 updated - openssl-1_1-1.1.1l-150500.17.9.1 updated - container:sles15-image-15.0.0-36.5.20 updated . Balanced SUSE Docker Security Enhancement for bci/python featuring several fixes included, boosting stability and safeguarding.. bci/openjdk Update, SUSE Container Advisory, Security Update. . LinuxSecurity.com Team
Jul 26, 2023
SuSE
100
security advisorymoderateopenssl patchSUSE: 2023:2441-1 Security Update for bci/golang with Moderate Severity
The container bci/golang was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2441-1 Container Tags : bci/golang:1.20 , bci/golang:1.20-1.8.18 , bci/golang:latest , bci/golang:stable , bci/golang:stable-1.8.18 Container Release : 8.18 Severity : moderate Type : security References : 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2965-1 Released: Tue Jul 25 12:30:22 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2966-1 Released: Tue Jul 25 14:26:14 2023 Summary: Recommended update for libxml2 Type: recommended Severity: moderate References: This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) The following package changes have been done: - libxml2-2-2.10.3-150500.5.5.1 updated - libopenssl1_1-1.1.1l-150500.17.9.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.9.1 updated - container:sles15-image-15.0.0-36.5.20 updated . Security enhancement for bci/golang docker image addressing fixes for moderate risk vulnerabilities related to openssl and libxml2.. bci/golang,SUSE,Container Security,Moderate Update,Openssl Patch. . LinuxSecurity.com Team
Jul 26, 2023
SuSE
100
security advisorymoderate severitylibxml2 updateSUSE: 2023:2440-1 Moderate: bci/dotnet-sdk Security Update Details
The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2440-1 Container Tags : bci/dotnet-sdk:6.0 , bci/dotnet-sdk:6.0-9.16 , bci/dotnet-sdk:6.0.20 , bci/dotnet-sdk:6.0.20-9.16 Container Release : 9.16 Severity : moderate Type : security References : 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2965-1 Released: Tue Jul 25 12:30:22 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2966-1 Released: Tue Jul 25 14:26:14 2023 Summary: Recommended update for libxml2 Type: recommended Severity: moderate References: This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) The following package changes have been done: - libxml2-2-2.10.3-150500.5.5.1 updated - libopenssl1_1-1.1.1l-150500.17.9.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.9.1 updated - container:sles15-image-15.0.0-36.5.20 updated . SUSE Container Upgrade for bci/python brings critical security fixes and essential updates.. bci dotnet-sdk update, openssl security patch, libxml2 container update. . LinuxSecurity.com Team
Jul 26, 2023
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!