TITLE: SUSE update for openssl SECUNIA ADVISORY ID: SA17259 VERIFY ADVISORY: http://secunia.com/advisories/17259/ CRITICAL: Less critical IMPACT: Security Bypass WHERE: >From remote OPERATING SYSTEM: SuSE Linux 9.0 http://secunia.com/product/2467/ SuSE Linux 9.1 http://secunia.com/product/3473/ SUSE Linux 9.2 http://secunia.com/product/4258/ SUSE Linux 9.3 http://secunia.com/product/4933/ SuSE Linux Desktop 1.x http://secunia.com/product/2002/ SuSE Linux Enterprise Server 8 http://secunia.com/product/1171/ SUSE Linux Enterprise Server 9 http://secunia.com/product/4118/ UnitedLinux 1.0 http://secunia.com/product/2003/ DESCRIPTION: SUSE has issued an update for openssl. This fixes a vulnerability, which potentially can be exploited by malicious people to bypass certain security restrictions. For more information: SA17151 SOLUTION: Apply updated packages. -- x86 Platform -- SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/openssl-0.9.7e-3.2.i586.rpm 83537e24205a2add698e1b3bdabd47da ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/openssl-devel-0.9.7e-3.2.i586.rpm 24b05ddf75b1b1c1630f489c73009782 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openssl-0.9.7d-25.2.i586.rpm eb5845c52c418f6c4dd54922854f282f ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openssl-devel-0.9.7d-25.2.i586.rpm 3489d04736d818da68ef83d148aadddd SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openssl-0.9.7d-15.15.3.i586.rpm 44fa57fcbdf8f3889bacb9cff6b1a09f ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openssl-devel-0.9.7d-15.15.3.i586.rpm 1faa73fc6dac13b05e40f5714f88b226 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/i586/openssl-32bit-9.1-200510151708.i586.rpm d4b72038c4552fcba9fa11b554af2eac ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/i586/openssl-devel-32bit-9.1-200510151708.i586.rpm 6b4b1eeaa0592fd7a92816ceb4658494 SuSE Linux 9.0: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/openssl-0.9.7b-135.i586.rpm cf17f027255eabe00df743ead5052f1a ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/openssl-devel-0.9.7b-135.i586.rpm 9ffd642f59150064dbb04644990d22b8 ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/i586/openssl-32bit-9.0-5.i586.rpm b411a2e07c627174edf3e59c36e2afea ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/i586/openssl-devel-32bit-9.0-5.i586.rpm 9dc0fcfe4741f1d8d4a173bc850d9e7d -- x86-64 Platform -- SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/openssl-0.9.7e-3.2.x86_64.rpm 3133ea05502fd5ebdecd906dbb751ff8 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/openssl-32bit-9.3-7.1.x86_64.rpm 025292747aed0b549b21dd6286afa4ee ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/openssl-devel-0.9.7e-3.2.x86_64.rpm 9b50c10172a3cffd6e5095dc6487382f ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/openssl-devel-32bit-9.3-7.1.x86_64.rpm ab9d47dc1d0ef66219ed6363c2d1234f SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/openssl-0.9.7d-25.2.x86_64.rpm 265519514837b9cc0a5e185b963e58c8 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/openssl-32bit-9.2-200510160152.x86_64.rpm 28376541a6f7cb041cafb39eab6e669f ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/openssl-devel-0.9.7d-25.2.x86_64.rpm df48531e0db3877bda1f8e631c96440e ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/openssl-devel-32bit-9.2-200510160152.x86_64.rpm c1012b7d66aab61fc5ba932ce3b3ddd5 SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openssl-0.9.7d-15.15.3.x86_64.rpm 97cbb139fac0a59b7e1ab5590cdd7911 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openssl-devel-0.9.7d-15.15.3.x86_64.rpm 4807e04cddbf761eb5da4fc1979822e5 SuSE Linux 9.0: ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/openssl-0.9.7b-135.x86_64.rpm 96767379ee26179d81231112da76ebc4 ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/openssl-devel-0.9.7b-135.x86_64.rpm eaacfac00c7fe69bee685e427b908ede -- Sources -- SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/openssl-0.9.7e-3.2.src.rpm 0e80ac579c04e13dc737c1efe57e1905 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/openssl-0.9.7d-25.2.src.rpm a378099cce54b5660349de48228f97b9 SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/openssl-0.9.7d-15.15.3.src.rpm bd45e590bccf5bb6dfc24756bc5a857f ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/openssl-0.9.7d-15.15.3.src.rpm 94d6dfafd61ccd20355f92907ffb8a72 SuSE Linux 9.0: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/openssl-0.9.7b-135.src.rpm af0b9e588250c2970687b518613e897a ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/openssl-0.9.7b-135.src.rpm 29afc1febd81c7765e56aefe0b083ebb ORIGINAL ADVISORY: http://www.novell.com/linux/security/advisories/2005_61_openssl.html OTHER REFERENCES: SA17151: http://secunia.com/advisories/17151/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------