openSUSE Recommended Update: Recommended update for cryptsetup ______________________________________________________________________________ Announcement ID: openSUSE-RU-2017:1490-1 Rating: low References: #1031998 Affected Products: openSUSE Leap 42.2 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for cryptsetup provides the following fix: - Don't use a zero-filled empty key, because in FIPS, XTS mode key parts mustn't be equivalent (bsc#1031998) This update was imported from the SUSE:SLE-12:Update update project. Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.2: zypper in -t patch openSUSE-2017-653=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.2 (i586 x86_64): cryptsetup-1.6.4-5.3.1 cryptsetup-debuginfo-1.6.4-5.3.1 cryptsetup-debugsource-1.6.4-5.3.1 libcryptsetup-devel-1.6.4-5.3.1 libcryptsetup4-1.6.4-5.3.1 libcryptsetup4-debuginfo-1.6.4-5.3.1 libcryptsetup4-hmac-1.6.4-5.3.1 - openSUSE Leap 42.2 (x86_64): libcryptsetup4-32bit-1.6.4-5.3.1 libcryptsetup4-debuginfo-32bit-1.6.4-5.3.1 libcryptsetup4-hmac-32bit-1.6.4-5.3.1 References: https://bugzilla.suse.com/1031998