SUSE-SU-2024:2089-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2024:2089-1

UNKNOWN

Security update for openssl-1_1

Published Jun 19, 2024

Modified 1 years ago

Fix available

Details

This update for openssl-1_1 fixes the following issues:

CVE-2024-4741: Fixed a use-after-free with SSL_free_buffers. (bsc#1225551)

Affected Packages

libopenssl-1_1-devel

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Micro 5.3SUSE Linux Enterprise Micro 5.4SUSE Linux Enterprise Server 15 SP4-LTSS

Fixed in:

1.1.1l-150400.7.69.1

libopenssl-1_1-devel-32bit

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4SUSE Manager Proxy 4.3

Fixed in:

1.1.1l-150400.7.69.1

libopenssl1_1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Micro 5.3SUSE Linux Enterprise Micro 5.4SUSE Linux Enterprise Server 15 SP4-LTSS

Fixed in:

1.1.1l-150400.7.69.1

libopenssl1_1-32bit

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4SUSE Manager Proxy 4.3

Fixed in:

1.1.1l-150400.7.69.1

libopenssl1_1-hmac

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Micro 5.3SUSE Linux Enterprise Micro 5.4SUSE Linux Enterprise Server 15 SP4-LTSS

Fixed in:

1.1.1l-150400.7.69.1

libopenssl1_1-hmac-32bit

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4SUSE Manager Proxy 4.3

Fixed in:

1.1.1l-150400.7.69.1

openssl-1_1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Micro 5.3SUSE Linux Enterprise Micro 5.4SUSE Linux Enterprise Server 15 SP4-LTSS

Fixed in:

1.1.1l-150400.7.69.1

References

https://bugzilla.suse.com/1225551

https://www.suse.com/security/cve/CVE-2024-4741

https://www.suse.com/support/update/announcement/2024/suse-su-20242089-1/

Upstream

Related

Ecosystems(10)

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Server 15 SP4-LTSS

Timeline

PublishedJun 19, 2024

ModifiedJun 19, 2024