This update for openssl fixes the following security issue:
CVE-2018-0737: The RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could have recovered the private key (bsc#1089039)
Affected Packages
libopenssl0_9_8
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4
Fixed in:
0.9.8j-0.106.15.1
libopenssl0_9_8-32bit
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4
Fixed in:
0.9.8j-0.106.15.1
libopenssl0_9_8-hmac
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4
Fixed in:
0.9.8j-0.106.15.1
libopenssl0_9_8-hmac-32bit
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4
Fixed in:
0.9.8j-0.106.15.1
libopenssl0_9_8-x86
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4
Fixed in:
0.9.8j-0.106.15.1
openssl
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4SUSE Studio Onsite 1.3
Fixed in:
0.9.8j-0.106.15.1
openssl-doc
SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4
Fixed in:
0.9.8j-0.106.15.1
libopenssl-devel
SUSE Linux Enterprise Software Development Kit 11 SP4SUSE Studio Onsite 1.3
Fixed in:
0.9.8j-0.106.15.1
libopenssl-devel-32bit
SUSE Linux Enterprise Software Development Kit 11 SP4