SUSE-SU-2025:1516-1

See a problem?
Please try reporting it to the source first.

Source

Import Source

JSON Data

https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:1516-1

Related

Published

2025-05-08T13:17:46Z

Modified

2025-05-09T15:16:19.394607Z

Upstream

Summary

Security update for openssl-3

Details

This update for openssl-3 fixes the following issues:

Other fixes:

FIPS: Deny SHA-1 signature verification in FIPS provider (bsc#1221365).
FIPS: RSA keygen PCT requirements.
FIPS: Check that the fips provider is available before setting it as the default provider in FIPS mode (bsc#1220523).
FIPS: Port openssl to use jitterentropy (bsc#1220523).
FIPS: Block non-Approved Elliptic Curves (bsc#1221786).
FIPS: Service Level Indicator (bsc#1221365).
FIPS: Output the FIPS-validation name and module version which uniquely identify the FIPS validated module (bsc#1221751).
FIPS: Add required selftests: (bsc#1221760).
FIPS: DH: Disable FIPS 186-4 Domain Parameters (bsc#1221821).
FIPS: Recommendation for Password-Based Key Derivation (bsc#1221827).
FIPS: Zero initialization required (bsc#1221752).
FIPS: Reseed DRBG (bsc#1220690, bsc#1220693, bsc#1220696).
FIPS: NIST SP 800-56Brev2 (bsc#1221824).
FIPS: Approved Modulus Sizes for RSA Digital Signature for FIPS 186-4 (bsc#1221787).
FIPS: Port openssl to use jitterentropy (bsc#1220523).
FIPS: NIST SP 800-56Arev3 (bsc#1221822).
FIPS: Error state has to be enforced (bsc#1221753).

References

Affected packages

Name: openssl-3
Purl: pkg:rpm/suse/openssl-3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Certifications%2015%20SP7

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.1.4-150600.5.15.1

{
    "binaries": [
        {
            "libopenssl-3-fips-provider": "3.1.4-150600.5.15.1"
        }
    ]
}