{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for openssl","title":"Title of the patch"},{"category":"description","text":"\nThis update of openssl fixes the following security issues:\n- CVE-2015-4000 (bsc#931698)\n  * The Logjam Attack / weakdh.org\n  * reject connections with DH parameters shorter than 1024 bits\n  * generates 2048-bit DH parameters by default\n- CVE-2015-1788 (bsc#934487)\n  * Malformed ECParameters causes infinite loop\n- CVE-2015-1789 (bsc#934489)\n  * Exploitable out-of-bounds read in X509_cmp_time\n- CVE-2015-1790 (bsc#934491)\n  * PKCS7 crash with missing EnvelopedContent\n- CVE-2015-1792 (bsc#934493)\n  * CMS verify infinite loop with unknown hash function\n- CVE-2015-1791 (bsc#933911)\n  * race condition in NewSessionTicket\n- CVE-2015-3216 (bsc#933898)\n  * Crash in ssleay_rand_bytes due to locking regression\n- fix a timing side channel in RSA decryption (bnc#929678)\n","title":"Description of the patch"},{"category":"details","text":"SUSE-SLE-DESKTOP-12-2015-282,SUSE-SLE-SDK-12-2015-282,SUSE-SLE-SERVER-12-2015-282","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1143-1.json"},{"category":"self","summary":"URL for SUSE-SU-2015:1143-1","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20151143-1/"},{"category":"self","summary":"E-Mail link for SUSE-SU-2015:1143-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2015-June/001462.html"},{"category":"self","summary":"SUSE Bug 926597","url":"https://bugzilla.suse.com/926597"},{"category":"self","summary":"SUSE Bug 929678","url":"https://bugzilla.suse.com/929678"},{"category":"self","summary":"SUSE Bug 931698","url":"https://bugzilla.suse.com/931698"},{"category":"self","summary":"SUSE Bug 933898","url":"https://bugzilla.suse.com/933898"},{"category":"self","summary":"SUSE Bug 933911","url":"https://bugzilla.suse.com/933911"},{"category":"self","summary":"SUSE Bug 934487","url":"https://bugzilla.suse.com/934487"},{"category":"self","summary":"SUSE Bug 934489","url":"https://bugzilla.suse.com/934489"},{"category":"self","summary":"SUSE Bug 934491","url":"https://bugzilla.suse.com/934491"},{"category":"self","summary":"SUSE Bug 934493","url":"https://bugzilla.suse.com/934493"},{"category":"self","summary":"SUSE CVE CVE-2015-1788 page","url":"https://www.suse.com/security/cve/CVE-2015-1788/"},{"category":"self","summary":"SUSE CVE CVE-2015-1789 page","url":"https://www.suse.com/security/cve/CVE-2015-1789/"},{"category":"self","summary":"SUSE CVE CVE-2015-1790 page","url":"https://www.suse.com/security/cve/CVE-2015-1790/"},{"category":"self","summary":"SUSE CVE CVE-2015-1791 page","url":"https://www.suse.com/security/cve/CVE-2015-1791/"},{"category":"self","summary":"SUSE CVE CVE-2015-1792 page","url":"https://www.suse.com/security/cve/CVE-2015-1792/"},{"category":"self","summary":"SUSE CVE CVE-2015-3216 page","url":"https://www.suse.com/security/cve/CVE-2015-3216/"},{"category":"self","summary":"SUSE CVE CVE-2015-4000 page","url":"https://www.suse.com/security/cve/CVE-2015-4000/"}],"title":"Security update for openssl","tracking":{"current_release_date":"2015-06-17T14:42:51Z","generator":{"date":"2015-06-17T14:42:51Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"SUSE-SU-2015:1143-1","initial_release_date":"2015-06-17T14:42:51Z","revision_history":[{"date":"2015-06-17T14:42:51Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"openssl-doc-1.0.1i-25.1.noarch","product":{"name":"openssl-doc-1.0.1i-25.1.noarch","product_id":"openssl-doc-1.0.1i-25.1.noarch"}}],"category":"architecture","name":"noarch"},{"branches":[{"category":"product_version","name":"libopenssl-devel-1.0.1i-25.1.ppc64le","product":{"name":"libopenssl-devel-1.0.1i-25.1.ppc64le","product_id":"libopenssl-devel-1.0.1i-25.1.ppc64le"}},{"category":"product_version","name":"libopenssl1_0_0-1.0.1i-25.1.ppc64le","product":{"name":"libopenssl1_0_0-1.0.1i-25.1.ppc64le","product_id":"libopenssl1_0_0-1.0.1i-25.1.ppc64le"}},{"category":"product_version","name":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","product":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","product_id":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le"}},{"category":"product_version","name":"openssl-1.0.1i-25.1.ppc64le","product":{"name":"openssl-1.0.1i-25.1.ppc64le","product_id":"openssl-1.0.1i-25.1.ppc64le"}}],"category":"architecture","name":"ppc64le"},{"branches":[{"category":"product_version","name":"libopenssl-devel-1.0.1i-25.1.s390x","product":{"name":"libopenssl-devel-1.0.1i-25.1.s390x","product_id":"libopenssl-devel-1.0.1i-25.1.s390x"}},{"category":"product_version","name":"libopenssl1_0_0-1.0.1i-25.1.s390x","product":{"name":"libopenssl1_0_0-1.0.1i-25.1.s390x","product_id":"libopenssl1_0_0-1.0.1i-25.1.s390x"}},{"category":"product_version","name":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","product":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","product_id":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x"}},{"category":"product_version","name":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","product":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","product_id":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x"}},{"category":"product_version","name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","product":{"name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","product_id":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x"}},{"category":"product_version","name":"openssl-1.0.1i-25.1.s390x","product":{"name":"openssl-1.0.1i-25.1.s390x","product_id":"openssl-1.0.1i-25.1.s390x"}}],"category":"architecture","name":"s390x"},{"branches":[{"category":"product_version","name":"libopenssl1_0_0-1.0.1i-25.1.x86_64","product":{"name":"libopenssl1_0_0-1.0.1i-25.1.x86_64","product_id":"libopenssl1_0_0-1.0.1i-25.1.x86_64"}},{"category":"product_version","name":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","product":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","product_id":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64"}},{"category":"product_version","name":"openssl-1.0.1i-25.1.x86_64","product":{"name":"openssl-1.0.1i-25.1.x86_64","product_id":"openssl-1.0.1i-25.1.x86_64"}},{"category":"product_version","name":"libopenssl-devel-1.0.1i-25.1.x86_64","product":{"name":"libopenssl-devel-1.0.1i-25.1.x86_64","product_id":"libopenssl-devel-1.0.1i-25.1.x86_64"}},{"category":"product_version","name":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","product":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","product_id":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64"}},{"category":"product_version","name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","product":{"name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","product_id":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Desktop 12","product":{"name":"SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12","product_identification_helper":{"cpe":"cpe:/o:suse:sled:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Software Development Kit 12","product":{"name":"SUSE Linux Enterprise Software Development Kit 12","product_id":"SUSE Linux Enterprise Software Development Kit 12","product_identification_helper":{"cpe":"cpe:/o:suse:sle-sdk:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12","product":{"name":"SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64"},"product_reference":"openssl-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl-devel-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12","product_id":"SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le"},"product_reference":"libopenssl-devel-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl-devel-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12","product_id":"SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x"},"product_reference":"libopenssl-devel-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl-devel-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12","product_id":"SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl-devel-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le"},"product_reference":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le"},"product_reference":"openssl-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x"},"product_reference":"openssl-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64"},"product_reference":"openssl-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-doc-1.0.1i-25.1.noarch as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch"},"product_reference":"openssl-doc-1.0.1i-25.1.noarch","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le"},"product_reference":"libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x"},"product_reference":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64"},"product_reference":"libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le"},"product_reference":"openssl-1.0.1i-25.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x"},"product_reference":"openssl-1.0.1i-25.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-1.0.1i-25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64"},"product_reference":"openssl-1.0.1i-25.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"openssl-doc-1.0.1i-25.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch"},"product_reference":"openssl-doc-1.0.1i-25.1.noarch","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"}]},"vulnerabilities":[{"cve":"CVE-2015-1788","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-1788"}],"notes":[{"category":"general","text":"The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm, as demonstrated by an attack against a server that supports client authentication.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-1788","url":"https://www.suse.com/security/cve/CVE-2015-1788"},{"category":"external","summary":"SUSE Bug 934487 for CVE-2015-1788","url":"https://bugzilla.suse.com/934487"},{"category":"external","summary":"SUSE Bug 934666 for CVE-2015-1788","url":"https://bugzilla.suse.com/934666"},{"category":"external","summary":"SUSE Bug 936586 for CVE-2015-1788","url":"https://bugzilla.suse.com/936586"},{"category":"external","summary":"SUSE Bug 937891 for CVE-2015-1788","url":"https://bugzilla.suse.com/937891"},{"category":"external","summary":"SUSE Bug 938432 for CVE-2015-1788","url":"https://bugzilla.suse.com/938432"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"moderate"}],"title":"CVE-2015-1788"},{"cve":"CVE-2015-1789","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-1789"}],"notes":[{"category":"general","text":"The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-1789","url":"https://www.suse.com/security/cve/CVE-2015-1789"},{"category":"external","summary":"SUSE Bug 934489 for CVE-2015-1789","url":"https://bugzilla.suse.com/934489"},{"category":"external","summary":"SUSE Bug 934666 for CVE-2015-1789","url":"https://bugzilla.suse.com/934666"},{"category":"external","summary":"SUSE Bug 936586 for CVE-2015-1789","url":"https://bugzilla.suse.com/936586"},{"category":"external","summary":"SUSE Bug 937891 for CVE-2015-1789","url":"https://bugzilla.suse.com/937891"},{"category":"external","summary":"SUSE Bug 938432 for CVE-2015-1789","url":"https://bugzilla.suse.com/938432"},{"category":"external","summary":"SUSE Bug 951391 for CVE-2015-1789","url":"https://bugzilla.suse.com/951391"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":7.5,"baseSeverity":"HIGH","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.0"},"products":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"important"}],"title":"CVE-2015-1789"},{"cve":"CVE-2015-1790","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-1790"}],"notes":[{"category":"general","text":"The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-1790","url":"https://www.suse.com/security/cve/CVE-2015-1790"},{"category":"external","summary":"SUSE Bug 934491 for CVE-2015-1790","url":"https://bugzilla.suse.com/934491"},{"category":"external","summary":"SUSE Bug 934666 for CVE-2015-1790","url":"https://bugzilla.suse.com/934666"},{"category":"external","summary":"SUSE Bug 936586 for CVE-2015-1790","url":"https://bugzilla.suse.com/936586"},{"category":"external","summary":"SUSE Bug 938432 for CVE-2015-1790","url":"https://bugzilla.suse.com/938432"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"moderate"}],"title":"CVE-2015-1790"},{"cve":"CVE-2015-1791","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-1791"}],"notes":[{"category":"general","text":"Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact by providing a NewSessionTicket during an attempt to reuse a ticket that had been obtained earlier.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-1791","url":"https://www.suse.com/security/cve/CVE-2015-1791"},{"category":"external","summary":"SUSE Bug 933911 for CVE-2015-1791","url":"https://bugzilla.suse.com/933911"},{"category":"external","summary":"SUSE Bug 934666 for CVE-2015-1791","url":"https://bugzilla.suse.com/934666"},{"category":"external","summary":"SUSE Bug 986238 for CVE-2015-1791","url":"https://bugzilla.suse.com/986238"},{"category":"external","summary":"SUSE Bug 989464 for CVE-2015-1791","url":"https://bugzilla.suse.com/989464"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"moderate"}],"title":"CVE-2015-1791"},{"cve":"CVE-2015-1792","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-1792"}],"notes":[{"category":"general","text":"The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (infinite loop) via vectors that trigger a NULL value of a BIO data structure, as demonstrated by an unrecognized X.660 OID for a hash function.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-1792","url":"https://www.suse.com/security/cve/CVE-2015-1792"},{"category":"external","summary":"SUSE Bug 934493 for CVE-2015-1792","url":"https://bugzilla.suse.com/934493"},{"category":"external","summary":"SUSE Bug 934666 for CVE-2015-1792","url":"https://bugzilla.suse.com/934666"},{"category":"external","summary":"SUSE Bug 937891 for CVE-2015-1792","url":"https://bugzilla.suse.com/937891"},{"category":"external","summary":"SUSE Bug 986238 for CVE-2015-1792","url":"https://bugzilla.suse.com/986238"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"moderate"}],"title":"CVE-2015-1792"},{"cve":"CVE-2015-3216","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-3216"}],"notes":[{"category":"general","text":"Race condition in a certain Red Hat patch to the PRNG lock implementation in the ssleay_rand_bytes function in OpenSSL, as distributed in openssl-1.0.1e-25.el7 in Red Hat Enterprise Linux (RHEL) 7 and other products, allows remote attackers to cause a denial of service (application crash) by establishing many TLS sessions to a multithreaded server, leading to use of a negative value for a certain length field.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-3216","url":"https://www.suse.com/security/cve/CVE-2015-3216"},{"category":"external","summary":"SUSE Bug 933898 for CVE-2015-3216","url":"https://bugzilla.suse.com/933898"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"moderate"}],"title":"CVE-2015-3216"},{"cve":"CVE-2015-4000","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-4000"}],"notes":[{"category":"general","text":"The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-4000","url":"https://www.suse.com/security/cve/CVE-2015-4000"},{"category":"external","summary":"SUSE Bug 1074631 for CVE-2015-4000","url":"https://bugzilla.suse.com/1074631"},{"category":"external","summary":"SUSE Bug 1211968 for CVE-2015-4000","url":"https://bugzilla.suse.com/1211968"},{"category":"external","summary":"SUSE Bug 931600 for CVE-2015-4000","url":"https://bugzilla.suse.com/931600"},{"category":"external","summary":"SUSE Bug 931698 for CVE-2015-4000","url":"https://bugzilla.suse.com/931698"},{"category":"external","summary":"SUSE Bug 931723 for CVE-2015-4000","url":"https://bugzilla.suse.com/931723"},{"category":"external","summary":"SUSE Bug 931845 for CVE-2015-4000","url":"https://bugzilla.suse.com/931845"},{"category":"external","summary":"SUSE Bug 932026 for CVE-2015-4000","url":"https://bugzilla.suse.com/932026"},{"category":"external","summary":"SUSE Bug 932483 for CVE-2015-4000","url":"https://bugzilla.suse.com/932483"},{"category":"external","summary":"SUSE Bug 934789 for CVE-2015-4000","url":"https://bugzilla.suse.com/934789"},{"category":"external","summary":"SUSE Bug 935033 for CVE-2015-4000","url":"https://bugzilla.suse.com/935033"},{"category":"external","summary":"SUSE Bug 935540 for CVE-2015-4000","url":"https://bugzilla.suse.com/935540"},{"category":"external","summary":"SUSE Bug 935979 for CVE-2015-4000","url":"https://bugzilla.suse.com/935979"},{"category":"external","summary":"SUSE Bug 937202 for CVE-2015-4000","url":"https://bugzilla.suse.com/937202"},{"category":"external","summary":"SUSE Bug 937766 for CVE-2015-4000","url":"https://bugzilla.suse.com/937766"},{"category":"external","summary":"SUSE Bug 938248 for CVE-2015-4000","url":"https://bugzilla.suse.com/938248"},{"category":"external","summary":"SUSE Bug 938432 for CVE-2015-4000","url":"https://bugzilla.suse.com/938432"},{"category":"external","summary":"SUSE Bug 938895 for CVE-2015-4000","url":"https://bugzilla.suse.com/938895"},{"category":"external","summary":"SUSE Bug 938905 for CVE-2015-4000","url":"https://bugzilla.suse.com/938905"},{"category":"external","summary":"SUSE Bug 938906 for CVE-2015-4000","url":"https://bugzilla.suse.com/938906"},{"category":"external","summary":"SUSE Bug 938913 for CVE-2015-4000","url":"https://bugzilla.suse.com/938913"},{"category":"external","summary":"SUSE Bug 938945 for CVE-2015-4000","url":"https://bugzilla.suse.com/938945"},{"category":"external","summary":"SUSE Bug 943664 for CVE-2015-4000","url":"https://bugzilla.suse.com/943664"},{"category":"external","summary":"SUSE Bug 944729 for CVE-2015-4000","url":"https://bugzilla.suse.com/944729"},{"category":"external","summary":"SUSE Bug 945582 for CVE-2015-4000","url":"https://bugzilla.suse.com/945582"},{"category":"external","summary":"SUSE Bug 955589 for CVE-2015-4000","url":"https://bugzilla.suse.com/955589"},{"category":"external","summary":"SUSE Bug 980406 for CVE-2015-4000","url":"https://bugzilla.suse.com/980406"},{"category":"external","summary":"SUSE Bug 990592 for CVE-2015-4000","url":"https://bugzilla.suse.com/990592"},{"category":"external","summary":"SUSE Bug 994144 for CVE-2015-4000","url":"https://bugzilla.suse.com/994144"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.7,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","version":"3.0"},"products":["SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Desktop 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:libopenssl1_0_0-hmac-32bit-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.s390x","SUSE Linux Enterprise Server for SAP Applications 12:openssl-1.0.1i-25.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 12:openssl-doc-1.0.1i-25.1.noarch","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.ppc64le","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.s390x","SUSE Linux Enterprise Software Development Kit 12:libopenssl-devel-1.0.1i-25.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-06-17T14:42:51Z","details":"important"}],"title":"CVE-2015-4000"}]}