Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2014:9073

Overview

Id SUSE-2014:9073
Name Novell SUSE 2014:9073 libopenssl-devel security update for SLE 11 SP3 i586
Vendor Name novell
Product Novell
Content Type Critical Critical
Language(s)
Operating System(s) Linux 
Released On 27 Mar 2014 12:00:00

SUSE-2014:9073

Novell SUSE 2014:9073 libopenssl-devel security update for SLE 11 SP3 i586

Vendor Name

novell

Product

Novell

Released On

27 Mar 2014 12:00:00

Url

http://www.novell.com/support

Description

LSAC(v2)
OpenSSL has been updated to fix an attack on ECDSA Nonces. Using the FLUSH+RELOAD Cache Side-channel Attack the Nonces could have been recovered. This update also ensures that the stack is marked non-executable on x86 32bit (bnc#870192). On other processor platforms it was already marked as non-executable before. Security Issue reference: * CVE-2014-0076

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches


Last Updated: 27 May 2016 11:18:43