Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves four vulnerabilities can now be installed.. # Security update for openssl1 Announcement ID: SUSE-SU-2026:0498-1 Release Date: 2026-02-13T10:56:55Z Rating: moderate References: * bsc#1256834 * bsc#1256837 * bsc#1256838 * bsc#1256840 Cross-References: * CVE-2025-68160 * CVE-2025-69420 * CVE-2025-69421 * CVE-2026-22796 CVSS scores: * CVE-2025-68160 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-68160 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-68160 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-69420 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-69420 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-69420 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-69421 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-69421 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-69421 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-22796 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-22796 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE An update that solves four vulnerabilities can now be installed. ## Description: This update for openssl1 fixes the following issues: * CVE-2025-68160: Heap out-of-bounds write in BIO_f_linebuffer on short writes (bsc#1256834). * CVE-2025-69420: Missing ASN1_TYPE validation in TS_RESP_verify_response() function (bsc#1256837). * CVE-2025-69421: NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function (bsc#1256838). * CVE-2026-22796: ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function (bsc#1256840). ## Patch Instructions: To installthis SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2026-498=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2026-498=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE (x86_64) * libopenssl1_0_0-1.0.1g-58.90.2 * libopenssl1_0_0-32bit-1.0.1g-58.90.2 * openssl1-1.0.1g-58.90.2 * openssl1-doc-1.0.1g-58.90.2 * libopenssl1-devel-1.0.1g-58.90.2 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * libopenssl1_0_0-1.0.1g-58.90.2 * libopenssl1_0_0-32bit-1.0.1g-58.90.2 * openssl1-1.0.1g-58.90.2 * openssl1-doc-1.0.1g-58.90.2 * libopenssl1-devel-1.0.1g-58.90.2 ## References: * https://www.suse.com/security/cve/CVE-2025-68160.html * https://www.suse.com/security/cve/CVE-2025-69420.html * https://www.suse.com/security/cve/CVE-2025-69421.html * https://www.suse.com/security/cve/CVE-2026-22796.html * https://bugzilla.suse.com/show_bug.cgi?id=1256834 * https://bugzilla.suse.com/show_bug.cgi?id=1256837 * https://bugzilla.suse.com/show_bug.cgi?id=1256838 * https://bugzilla.suse.com/show_bug.cgi?id=1256840 . SUSE releases a moderate security fix for openssl1 addressing four vulnerabilities. Recommended updates are provided.. SUSE Linux Enterprise, openssl security, Linux updates, data integrity issues, software vulnerabilities. . LinuxSecurity.com Team
* bsc#1250232 Cross-References: * CVE-2025-9230 . # Security update for openssl1 Announcement ID: SUSE-SU-2025:03630-1 Release Date: 2025-10-17T11:39:01Z Rating: important References: * bsc#1250232 Cross-References: * CVE-2025-9230 CVSS scores: * CVE-2025-9230 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-9230 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-9230 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE An update that solves one vulnerability can now be installed. ## Description: This update for openssl1 fixes the following issues: * CVE-2025-9230: Fixed out-of-bounds read & write in RFC 3211 KEK unwrap (bsc#1250232). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2025-3630=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2025-3630=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE (x86_64) * libopenssl1-devel-1.0.1g-0.58.85.1 * openssl1-doc-1.0.1g-0.58.85.1 * libopenssl1_0_0-1.0.1g-0.58.85.1 * libopenssl1_0_0-32bit-1.0.1g-0.58.85.1 * openssl1-1.0.1g-0.58.85.1 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * libopenssl1-devel-1.0.1g-0.58.85.1 * openssl1-doc-1.0.1g-0.58.85.1 * libopenssl1_0_0-1.0.1g-0.58.85.1 * libopenssl1_0_0-32bit-1.0.1g-0.58.85.1 * openssl1-1.0.1g-0.58.85.1 ## References: * https://www.suse.com/security/cve/CVE-2025-9230.html * https://bugzilla.suse.com/show_bug.cgi?id=1250232 . Critical security update for SUSE Linux fixingCVE-2025-9230 in openssl1, addressing important vulnerabilities.. SUSE Linux, OpenSSL Security, Updates, Important Patches. . Severity: Important. LinuxSecurity.com Team
* bsc#1219243 Cross-References: * CVE-2024-0727 . # Security update for openssl1 Announcement ID: SUSE-SU-2024:0841-1 Rating: moderate References: * bsc#1219243 Cross-References: * CVE-2024-0727 CVSS scores: * CVE-2024-0727 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2024-0727 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 An update that solves one vulnerability can now be installed. ## Description: This update for openssl1 fixes the following issues: * CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file (bsc#1219243). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-841=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-841=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (x86_64) * openssl1-1.0.1g-0.58.79.1 * libopenssl1-devel-1.0.1g-0.58.79.1 * libopenssl1_0_0-1.0.1g-0.58.79.1 * libopenssl1_0_0-32bit-1.0.1g-0.58.79.1 * openssl1-doc-1.0.1g-0.58.79.1 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * openssl1-1.0.1g-0.58.79.1 * libopenssl1-devel-1.0.1g-0.58.79.1 * libopenssl1_0_0-1.0.1g-0.58.79.1 * libopenssl1_0_0-32bit-1.0.1g-0.58.79.1 * openssl1-doc-1.0.1g-0.58.79.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0727.html * https://bugzilla.suse.com/show_bug.cgi?id=1219243 . SUSE security patch for openssl1 addresses a service interruption vulnerability identified by reference ID SUSE-SU-2024:0943-2.. openssl1 Security Update,SUSE Enterprise Server, Denial of Service Fix. . Severity: Important. LinuxSecurity.com Team
* bsc#1216922 Cross-References: * CVE-2023-5678 . # Security update for openssl1 Announcement ID: SUSE-SU-2023:4488-1 Rating: important References: * bsc#1216922 Cross-References: * CVE-2023-5678 CVSS scores: * CVE-2023-5678 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-5678 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 An update that solves one vulnerability can now be installed. ## Description: This update for openssl1 fixes the following issues: * CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2023-4488=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2023-4488=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (x86_64) * libopenssl1_0_0-32bit-1.0.1g-0.58.76.1 * openssl1-doc-1.0.1g-0.58.76.1 * openssl1-1.0.1g-0.58.76.1 * libopenssl1_0_0-1.0.1g-0.58.76.1 * libopenssl1-devel-1.0.1g-0.58.76.1 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * libopenssl1_0_0-32bit-1.0.1g-0.58.76.1 * openssl1-doc-1.0.1g-0.58.76.1 * openssl1-1.0.1g-0.58.76.1 * libopenssl1_0_0-1.0.1g-0.58.76.1 * libopenssl1-devel-1.0.1g-0.58.76.1 ## References: * https://www.suse.com/security/cve/CVE-2023-5678.html * https://bugzilla.suse.com/show_bug.cgi?id=1216922 . Crucial SUSE patch for openssl1 addresses potential denial of service vulnerabilities in multiple SUSEversions. Take action now.. SUSE Linux Update, OpenSSL Security, Denial of Service Fix. . Severity: Important. LinuxSecurity.com Team
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for openssl1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:14916-1 Rating: important References: #1196877 Cross-References: CVE-2022-0778 CVSS scores: CVE-2022-0778 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Server 11-SECURITY ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for openssl1 fixes the following issues: - CVE-2022-0778: Fixed an infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SECURITY: zypper in -t patch secsp3-openssl1-14916=1 Package List: - SUSE Linux Enterprise Server 11-SECURITY (i586 ia64 ppc64 s390x x86_64): libopenssl1-devel-1.0.1g-0.58.42.1 libopenssl1_0_0-1.0.1g-0.58.42.1 openssl1-1.0.1g-0.58.42.1 openssl1-doc-1.0.1g-0.58.42.1 - SUSE Linux Enterprise Server 11-SECURITY (ppc64 s390x x86_64): libopenssl1_0_0-32bit-1.0.1g-0.58.42.1 - SUSE Linux Enterprise Server 11-SECURITY (ia64): libopenssl1_0_0-x86-1.0.1g-0.58.42.1 References: https://www.suse.com/security/cve/CVE-2022-0778.html https://bugzilla.suse.com/1196877 . SUSE Security Patch for openssl1 addresses a severe endless loop vulnerability in certificate processing. Upgrade immediately to enhance security!. SUSE Security Update, openssl1 patch, software vulnerability, infinite loop fix, SUSE Linux Enterprise. . Severity: Critical. LinuxSecurity.com Team
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for openssl1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:14801-1 Rating: low References: #1189521 Cross-References: CVE-2021-3712 CVSS scores: CVE-2021-3712 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for openssl1 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SECURITY: zypper in -t patch secsp3-openssl1-14801=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-openssl1-14801=1 Package List: - SUSE Linux Enterprise Server 11-SECURITY (i586 ia64 ppc64 s390x x86_64): libopenssl1-devel-1.0.1g-0.58.39.1 libopenssl1_0_0-1.0.1g-0.58.39.1 openssl1-1.0.1g-0.58.39.1 openssl1-doc-1.0.1g-0.58.39.1 - SUSE Linux Enterprise Server 11-SECURITY (ppc64 s390x x86_64): libopenssl1_0_0-32bit-1.0.1g-0.58.39.1 - SUSE Linux Enterprise Server 11-SECURITY (ia64): libopenssl1_0_0-x86-1.0.1g-0.58.39.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): openssl1-debuginfo-1.0.1g-0.58.39.1 openssl1-debugsource-1.0.1g-0.58.39.1 References: https://www.suse.com/security/cve/CVE-2021-3712.html https://bugzilla.suse.com/1189521 . This patch enhances the security of openssl2, correcting a problem related to a buffer overflow flaw, categorized as low priority.. SUSE Update, Openssl1 Security, Buffer Overflow Fix, Low Severity Issue. . Severity: Low. LinuxSecurity.com Team
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for openssl1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:14511-1 Rating: important References: #1176331 Cross-References: CVE-2020-1968 Affected Products: SUSE Linux Enterprise Server 11-SECURITY ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for openssl1 fixes the following issues: - CVE-2020-1968: Introduced hardening against the Raccoon attack by always generating fresh DH keys and never reuse them across multiple TLS connections (bsc#1176331). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SECURITY: zypper in -t patch secsp3-openssl1-14511=1 Package List: - SUSE Linux Enterprise Server 11-SECURITY (i586 ia64 ppc64 s390x x86_64): libopenssl1-devel-1.0.1g-0.58.27.2 libopenssl1_0_0-1.0.1g-0.58.27.2 openssl1-1.0.1g-0.58.27.2 openssl1-doc-1.0.1g-0.58.27.2 - SUSE Linux Enterprise Server 11-SECURITY (ppc64 s390x x86_64): libopenssl1_0_0-32bit-1.0.1g-0.58.27.2 - SUSE Linux Enterprise Server 11-SECURITY (ia64): libopenssl1_0_0-x86-1.0.1g-0.58.27.2 References: https://www.suse.com/security/cve/CVE-2020-1968.html https://bugzilla.suse.com/1176331 _______________________________________________ sle-security-updates mailing list
An update that solves three vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for openssl1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:3964-1 Rating: moderate References: #1104789 #1110018 #1113534 #1113652 Cross-References: CVE-2016-8610 CVE-2018-0734 CVE-2018-5407 Affected Products: SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for openssl1 fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation (bsc#1113652). - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses (bsc#1113534). - CVE-2016-8610: Adjusted current fix and add missing error string (bsc#1110018). - Fixed the "One and Done" side-channel attack on RSA (bsc#1104789). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SECURITY: zypper in -t patch secsp3-openssl1-13887=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-openssl1-13887=1 Package List: - SUSE Linux Enterprise Server 11-SECURITY (i586 ia64 ppc64 s390x x86_64): libopenssl1-devel-1.0.1g-0.58.15.1 libopenssl1_0_0-1.0.1g-0.58.15.1 openssl1-1.0.1g-0.58.15.1 openssl1-doc-1.0.1g-0.58.15.1 - SUSE Linux Enterprise Server 11-SECURITY (ppc64 s390x x86_64): libopenssl1_0_0-32bit-1.0.1g-0.58.15.1 - SUSE Linux Enterprise Server 11-SECURITY (ia64): libopenssl1_0_0-x86-1.0.1g-0.58.15.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): openssl1-debuginfo-1.0.1g-0.58.15.1 openssl1-debugsource-1.0.1g-0.58.15.1 References: https://www.suse.com/security/cve/CVE-2016-8610.html https://www.suse.com/security/cve/CVE-2018-0734.html https://www.suse.com/security/cve/CVE-2018-5407.html https://bugzilla.suse.com/1104789 https://bugzilla.suse.com/1110018 https://bugzilla.suse.com/1113534 https://bugzilla.suse.com/1113652 _______________________________________________ sle-security-updates mailing list
Get the latest Linux and open source security news straight to your inbox.