openSUSE Recommended Update: openssl: fix compression disabling side effects ______________________________________________________________________________ Announcement ID: openSUSE-RU-2013:1951-1 Rating: moderate References: #849377 Affected Products: openSUSE 13.1 openSUSE 12.3 openSUSE 12.2 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: The disablement of compression by default in openssl to fix the BEAST and CRIME attacks was slightly flawed when openssl was used by sudo (via LDAP). The security patch was rewritten to fix this. Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.1: zypper in -t patch openSUSE-2013-1020 - openSUSE 12.3: zypper in -t patch openSUSE-2013-1020 - openSUSE 12.2: zypper in -t patch openSUSE-2013-1020 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.1 (i586 x86_64): libopenssl-devel-1.0.1e-11.5.1 libopenssl1_0_0-1.0.1e-11.5.1 libopenssl1_0_0-debuginfo-1.0.1e-11.5.1 openssl-1.0.1e-11.5.1 openssl-debuginfo-1.0.1e-11.5.1 openssl-debugsource-1.0.1e-11.5.1 - openSUSE 13.1 (x86_64): libopenssl-devel-32bit-1.0.1e-11.5.1 libopenssl1_0_0-32bit-1.0.1e-11.5.1 libopenssl1_0_0-debuginfo-32bit-1.0.1e-11.5.1 - openSUSE 13.1 (noarch): openssl-doc-1.0.1e-11.5.1 - openSUSE 12.3 (i586 x86_64): libopenssl-devel-1.0.1e-1.17.1 libopenssl1_0_0-1.0.1e-1.17.1 libopenssl1_0_0-debuginfo-1.0.1e-1.17.1 openssl-1.0.1e-1.17.1 openssl-debuginfo-1.0.1e-1.17.1 openssl-debugsource-1.0.1e-1.17.1 - openSUSE 12.3 (x86_64): libopenssl-devel-32bit-1.0.1e-1.17.1 libopenssl1_0_0-32bit-1.0.1e-1.17.1 libopenssl1_0_0-debuginfo-32bit-1.0.1e-1.17.1 - openSUSE 12.3 (noarch): openssl-doc-1.0.1e-1.17.1 - openSUSE 12.2 (i586 x86_64): libopenssl-devel-1.0.1e-2.16.1 libopenssl1_0_0-1.0.1e-2.16.1 libopenssl1_0_0-debuginfo-1.0.1e-2.16.1 openssl-1.0.1e-2.16.1 openssl-debuginfo-1.0.1e-2.16.1 openssl-debugsource-1.0.1e-2.16.1 - openSUSE 12.2 (x86_64): libopenssl-devel-32bit-1.0.1e-2.16.1 libopenssl1_0_0-32bit-1.0.1e-2.16.1 libopenssl1_0_0-debuginfo-32bit-1.0.1e-2.16.1 - openSUSE 12.2 (noarch): openssl-doc-1.0.1e-2.16.1 References: https://bugzilla.novell.com/849377