oval:org.mitre.oval:def:25900

Definition Id: oval:org.mitre.oval:def:25900
 
Oval ID: oval:org.mitre.oval:def:25900
Title: SUSE-SU-2013:0554-1 -- Security update for OpenSSL
Description: OpenSSL has been updated to fix several security issues: * CVE-2012-4929: Avoid the openssl CRIME attack by disabling SSL compression by default. Setting the environment variable "OPENSSL_NO_DEFAULT_ZLIB" to "no" enables compression again. Please note that openssl on SUSE Linux Enterprise 10 is not built with compression support. * CVE-2013-0169: Timing attacks against TLS could be used by physically local attackers to gain access to transmitted plain text or private keymaterial. This issue is also known as the "Lucky-13" issue. * CVE-2013-0166: A OCSP invalid key denial of service issue was fixed.
Family: unix Class: patch
Reference(s): SUSE-SU-2013:0554-1
CVE-2012-4929
CVE-2013-0169
CVE-2013-0166
Version: 3
Platform(s): SUSE Linux Enterprise Server 10
SUSE Linux Enterprise Desktop 10
Product(s): OpenSSL
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:2106
 
Oval ID: oval:org.mitre.oval:def:2106
Title: SUSE Linux Enterprise Desktop 10 is installed
Description: SUSE Linux Enterprise Desktop 10 is installed.
Family: unix Class: inventory
Reference(s): cpe:/o:novell:suse_linux:10::desktop
Version: 8
Platform(s): SUSE Linux Enterprise Desktop 10
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:25900
Definition Id: oval:org.mitre.oval:def:1368
 
Oval ID: oval:org.mitre.oval:def:1368
Title: SUSE Linux Enterprise Server 10 is installed
Description: SUSE Linux Enterprise Server 10 is installed.
Family: unix Class: inventory
Reference(s): cpe:/o:novell:suse_linux:10::server
Version: 6
Platform(s): SUSE Linux Enterprise Server 10
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:25900
oval:org.mitre.oval:def:25900