Security update for openssl SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:1553-1 Final 1 1 2019-06-18T16:29:26Z current 2019-06-18T16:29:26Z 2019-06-18T16:29:26Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for openssl This update for openssl fixes the following issues: - CVE-2018-0732: Reject excessively large primes in DH key generation (bsc#1097158) - CVE-2018-0734: Timing vulnerability in DSA signature generation (bsc#1113652) - CVE-2018-0737: Cache timing vulnerability in RSA Key Generation (bsc#1089039) - CVE-2018-5407: Elliptic curve scalar multiplication timing attack defenses (fixes 'PortSmash') (bsc#1113534) - CVE-2019-1559: Fix 0-byte record padding oracle via SSL_shutdown (bsc#1127080) - Fix One&Done side-channel attack on RSA (bsc#1104789) - Reject invalid EC point coordinates (bsc#1131291) - The 9 Lives of Bleichenbacher's CAT: Cache ATtacks on TLS Implementations (bsc#1117951) - Add missing error string to CVE-2016-8610 fix (bsc#1110018#c9) - blinding enhancements for ECDSA and DSA (bsc#1097624, bsc#1098592) Non security fixes: - correct the error detection in the fips patch (bsc#1106197) - Add openssl(cli) Provide so the packages that require the openssl binary can require this instead of the new openssl meta package (bsc#1101470) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2019-1553,SUSE-SLE-SERVER-12-2019-1553 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ Link for SUSE-SU-2019:1553-1 https://lists.suse.com/pipermail/sle-security-updates/2019-June/005586.html E-Mail link for SUSE-SU-2019:1553-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1089039 SUSE Bug 1089039 https://bugzilla.suse.com/1097158 SUSE Bug 1097158 https://bugzilla.suse.com/1097624 SUSE Bug 1097624 https://bugzilla.suse.com/1098592 SUSE Bug 1098592 https://bugzilla.suse.com/1101470 SUSE Bug 1101470 https://bugzilla.suse.com/1104789 SUSE Bug 1104789 https://bugzilla.suse.com/1106197 SUSE Bug 1106197 https://bugzilla.suse.com/1110018 SUSE Bug 1110018 https://bugzilla.suse.com/1113534 SUSE Bug 1113534 https://bugzilla.suse.com/1113652 SUSE Bug 1113652 https://bugzilla.suse.com/1117951 SUSE Bug 1117951 https://bugzilla.suse.com/1127080 SUSE Bug 1127080 https://bugzilla.suse.com/1131291 SUSE Bug 1131291 https://www.suse.com/security/cve/CVE-2016-8610/ SUSE CVE CVE-2016-8610 page https://www.suse.com/security/cve/CVE-2018-0732/ SUSE CVE CVE-2018-0732 page https://www.suse.com/security/cve/CVE-2018-0734/ SUSE CVE CVE-2018-0734 page https://www.suse.com/security/cve/CVE-2018-0737/ SUSE CVE CVE-2018-0737 page https://www.suse.com/security/cve/CVE-2018-5407/ SUSE CVE CVE-2018-5407 page https://www.suse.com/security/cve/CVE-2019-1559/ SUSE CVE CVE-2019-1559 page SUSE Linux Enterprise Server 12-LTSS libopenssl-devel-1.0.1i-27.34.1 libopenssl-devel-32bit-1.0.1i-27.34.1 libopenssl-devel-64bit-1.0.1i-27.34.1 libopenssl1_0_0-1.0.1i-27.34.1 libopenssl1_0_0-32bit-1.0.1i-27.34.1 libopenssl1_0_0-64bit-1.0.1i-27.34.1 libopenssl1_0_0-hmac-1.0.1i-27.34.1 libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 libopenssl1_0_0-hmac-64bit-1.0.1i-27.34.1 openssl-1.0.1i-27.34.1 openssl-doc-1.0.1i-27.34.1 libopenssl1_0_0-1.0.1i-27.34.1 as a component of SUSE Linux Enterprise Server 12-LTSS libopenssl1_0_0-32bit-1.0.1i-27.34.1 as a component of SUSE Linux Enterprise Server 12-LTSS libopenssl1_0_0-hmac-1.0.1i-27.34.1 as a component of SUSE Linux Enterprise Server 12-LTSS libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 as a component of SUSE Linux Enterprise Server 12-LTSS openssl-1.0.1i-27.34.1 as a component of SUSE Linux Enterprise Server 12-LTSS openssl-doc-1.0.1i-27.34.1 as a component of SUSE Linux Enterprise Server 12-LTSS A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients. CVE-2016-8610 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-doc-1.0.1i-27.34.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ https://www.suse.com/security/cve/CVE-2016-8610.html CVE-2016-8610 https://bugzilla.suse.com/1005878 SUSE Bug 1005878 https://bugzilla.suse.com/1005879 SUSE Bug 1005879 https://bugzilla.suse.com/1110018 SUSE Bug 1110018 https://bugzilla.suse.com/1120592 SUSE Bug 1120592 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 https://bugzilla.suse.com/982575 SUSE Bug 982575 During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2-1.0.2o). CVE-2018-0732 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-doc-1.0.1i-27.34.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ https://www.suse.com/security/cve/CVE-2018-0732.html CVE-2018-0732 https://bugzilla.suse.com/1077628 SUSE Bug 1077628 https://bugzilla.suse.com/1087102 SUSE Bug 1087102 https://bugzilla.suse.com/1097158 SUSE Bug 1097158 https://bugzilla.suse.com/1099502 SUSE Bug 1099502 https://bugzilla.suse.com/1106692 SUSE Bug 1106692 https://bugzilla.suse.com/1108542 SUSE Bug 1108542 https://bugzilla.suse.com/1110163 SUSE Bug 1110163 https://bugzilla.suse.com/1112097 SUSE Bug 1112097 https://bugzilla.suse.com/1122198 SUSE Bug 1122198 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p). CVE-2018-0734 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-doc-1.0.1i-27.34.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ https://www.suse.com/security/cve/CVE-2018-0734.html CVE-2018-0734 https://bugzilla.suse.com/1113534 SUSE Bug 1113534 https://bugzilla.suse.com/1113652 SUSE Bug 1113652 https://bugzilla.suse.com/1113742 SUSE Bug 1113742 https://bugzilla.suse.com/1122198 SUSE Bug 1122198 https://bugzilla.suse.com/1122212 SUSE Bug 1122212 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o). CVE-2018-0737 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-doc-1.0.1i-27.34.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ https://www.suse.com/security/cve/CVE-2018-0737.html CVE-2018-0737 https://bugzilla.suse.com/1089039 SUSE Bug 1089039 https://bugzilla.suse.com/1089041 SUSE Bug 1089041 https://bugzilla.suse.com/1089044 SUSE Bug 1089044 https://bugzilla.suse.com/1089045 SUSE Bug 1089045 https://bugzilla.suse.com/1108542 SUSE Bug 1108542 https://bugzilla.suse.com/1123780 SUSE Bug 1123780 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'. CVE-2018-5407 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-doc-1.0.1i-27.34.1 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ https://www.suse.com/security/cve/CVE-2018-5407.html CVE-2018-5407 https://bugzilla.suse.com/1113534 SUSE Bug 1113534 https://bugzilla.suse.com/1116195 SUSE Bug 1116195 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). Fixed in OpenSSL 1.0.2r (Affected 1.0.2-1.0.2q). CVE-2019-1559 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:libopenssl1_0_0-hmac-32bit-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-1.0.1i-27.34.1 SUSE Linux Enterprise Server 12-LTSS:openssl-doc-1.0.1i-27.34.1 low 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191553-1/ https://www.suse.com/security/cve/CVE-2019-1559.html CVE-2019-1559 https://bugzilla.suse.com/1127080 SUSE Bug 1127080 https://bugzilla.suse.com/1130039 SUSE Bug 1130039 https://bugzilla.suse.com/1141798 SUSE Bug 1141798