SUSE: CVE-2014-3566: SUSE Linux Security Advisory

Back to Search

SUSE: CVE-2014-3566: SUSE Linux Security Advisory

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

10/14/2014

Created

07/25/2018

Added

12/18/2015

Modified

11/29/2019

Description

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

Solution(s)

suse-upgrade-apache2-mod_nss
suse-upgrade-claws-mail
suse-upgrade-claws-mail-lang
suse-upgrade-compat-openssl097g
suse-upgrade-compat-openssl097g-32bit
suse-upgrade-compat-openssl098
suse-upgrade-cyrus-imapd
suse-upgrade-cyrus-imapd-devel
suse-upgrade-evolution-data-server
suse-upgrade-evolution-data-server-32bit
suse-upgrade-evolution-data-server-devel
suse-upgrade-evolution-data-server-lang
suse-upgrade-evolution-data-server-x86
suse-upgrade-gnome-packagekit
suse-upgrade-gnome-packagekit-lang
suse-upgrade-java-1_5_0-ibm
suse-upgrade-java-1_5_0-ibm-32bit
suse-upgrade-java-1_5_0-ibm-alsa
suse-upgrade-java-1_5_0-ibm-alsa-32bit
suse-upgrade-java-1_5_0-ibm-devel
suse-upgrade-java-1_5_0-ibm-devel-32bit
suse-upgrade-java-1_5_0-ibm-fonts
suse-upgrade-java-1_5_0-ibm-jdbc
suse-upgrade-java-1_5_0-ibm-plugin
suse-upgrade-java-1_6_0-ibm
suse-upgrade-java-1_6_0-ibm-32bit
suse-upgrade-java-1_6_0-ibm-alsa
suse-upgrade-java-1_6_0-ibm-alsa-32bit
suse-upgrade-java-1_6_0-ibm-devel
suse-upgrade-java-1_6_0-ibm-devel-32bit
suse-upgrade-java-1_6_0-ibm-fonts
suse-upgrade-java-1_6_0-ibm-jdbc
suse-upgrade-java-1_6_0-ibm-plugin
suse-upgrade-java-1_6_0-ibm-plugin-32bit
suse-upgrade-java-1_7_0-ibm
suse-upgrade-java-1_7_0-ibm-alsa
suse-upgrade-java-1_7_0-ibm-devel
suse-upgrade-java-1_7_0-ibm-jdbc
suse-upgrade-java-1_7_0-ibm-plugin
suse-upgrade-java-1_7_0-openjdk
suse-upgrade-java-1_7_0-openjdk-demo
suse-upgrade-java-1_7_0-openjdk-devel
suse-upgrade-java-1_7_0-openjdk-headless
suse-upgrade-java-1_7_1-ibm
suse-upgrade-java-1_7_1-ibm-alsa
suse-upgrade-java-1_7_1-ibm-devel
suse-upgrade-java-1_7_1-ibm-jdbc
suse-upgrade-java-1_7_1-ibm-plugin
suse-upgrade-java-1_8_0-ibm
suse-upgrade-java-1_8_0-ibm-alsa
suse-upgrade-java-1_8_0-ibm-devel
suse-upgrade-java-1_8_0-ibm-plugin
suse-upgrade-libcamel-1_2-45
suse-upgrade-libcamel-1_2-45-32bit
suse-upgrade-libebackend-1_2-7
suse-upgrade-libebackend-1_2-7-32bit
suse-upgrade-libebook-1_2-14
suse-upgrade-libebook-1_2-14-32bit
suse-upgrade-libebook-contacts-1_2-0
suse-upgrade-libebook-contacts-1_2-0-32bit
suse-upgrade-libecal-1_2-16
suse-upgrade-libecal-1_2-16-32bit
suse-upgrade-libedata-book-1_2-20
suse-upgrade-libedata-book-1_2-20-32bit
suse-upgrade-libedata-cal-1_2-23
suse-upgrade-libedata-cal-1_2-23-32bit
suse-upgrade-libedataserver-1_2-18
suse-upgrade-libedataserver-1_2-18-32bit
suse-upgrade-libopenssl-1_0_0-devel
suse-upgrade-libopenssl-devel
suse-upgrade-libopenssl-devel-32bit
suse-upgrade-libopenssl0_9_8
suse-upgrade-libopenssl0_9_8-32bit
suse-upgrade-libopenssl0_9_8-debuginfo
suse-upgrade-libopenssl0_9_8-debuginfo-32bit
suse-upgrade-libopenssl0_9_8-debugsource
suse-upgrade-libopenssl0_9_8-hmac
suse-upgrade-libopenssl0_9_8-hmac-32bit
suse-upgrade-libopenssl0_9_8-x86
suse-upgrade-libopenssl1-devel
suse-upgrade-libopenssl1_0_0
suse-upgrade-libopenssl1_0_0-32bit
suse-upgrade-libopenssl1_0_0-debuginfo
suse-upgrade-libopenssl1_0_0-debuginfo-32bit
suse-upgrade-libopenssl1_0_0-hmac
suse-upgrade-libopenssl1_0_0-hmac-32bit
suse-upgrade-libopenssl1_0_0-x86
suse-upgrade-libpackagekit-glib2-16
suse-upgrade-libpackagekit-glib2-devel
suse-upgrade-libruby2_1-2_1
suse-upgrade-libserf
suse-upgrade-libserf-1-1
suse-upgrade-libserf-1-1-debuginfo
suse-upgrade-libserf-debugsource
suse-upgrade-libserf-devel
suse-upgrade-libsolv
suse-upgrade-libsolv-devel
suse-upgrade-libsolv-tools
suse-upgrade-libwsman-devel
suse-upgrade-libwsman1
suse-upgrade-libyui-ncurses-pkg
suse-upgrade-libyui-ncurses-pkg-devel
suse-upgrade-libyui-ncurses-pkg6
suse-upgrade-libyui-qt-pkg
suse-upgrade-libyui-qt-pkg-devel
suse-upgrade-libyui-qt-pkg6
suse-upgrade-libzypp
suse-upgrade-libzypp-bindings
suse-upgrade-libzypp-devel
suse-upgrade-monit
suse-upgrade-monit-debuginfo
suse-upgrade-monit-debugsource
suse-upgrade-monit-doc
suse-upgrade-openssl
suse-upgrade-openssl-1_0_0
suse-upgrade-openssl-1_0_0-doc
suse-upgrade-openssl-32bit
suse-upgrade-openssl-debuginfo
suse-upgrade-openssl-debugsource
suse-upgrade-openssl-devel
suse-upgrade-openssl-devel-32bit
suse-upgrade-openssl-doc
suse-upgrade-openssl1
suse-upgrade-openssl1-doc
suse-upgrade-openwsman-client
suse-upgrade-openwsman-python
suse-upgrade-openwsman-server
suse-upgrade-packagekit
suse-upgrade-packagekit-backend-zypp
suse-upgrade-packagekit-devel
suse-upgrade-packagekit-gstreamer-plugin
suse-upgrade-packagekit-lang
suse-upgrade-perl-cyrus-imap
suse-upgrade-perl-cyrus-sieve-managesieve
suse-upgrade-perl-solv
suse-upgrade-perl-zypp
suse-upgrade-pure-ftpd
suse-upgrade-python-solv
suse-upgrade-python-zypp
suse-upgrade-res-signingkeys
suse-upgrade-ruby2-1
suse-upgrade-ruby2-1-devel
suse-upgrade-ruby2-1-stdlib
suse-upgrade-slrn
suse-upgrade-slrn-debuginfo
suse-upgrade-slrn-debugsource
suse-upgrade-slrn-lang
suse-upgrade-smt
suse-upgrade-smt-support
suse-upgrade-suseregister
suse-upgrade-typelib-1_0-ebook-1_2
suse-upgrade-typelib-1_0-ebookcontacts-1_2
suse-upgrade-typelib-1_0-edataserver-1_2
suse-upgrade-typelib-1_0-packagekitglib-1_0
suse-upgrade-typelib-1_0-packagekitplugin-1_0
suse-upgrade-yast2-pkg-bindings
suse-upgrade-zypper
suse-upgrade-zypper-log

Related Vulnerabilities

SUSE-SU-2014:1357-1
SUSE-SU-2014:1361-1
SUSE-SU-2014:1386-1
SUSE-SU-2014:1387-1
SUSE-SU-2014:1387-2
SUSE-SU-2014:1409-1
SUSE-SU-2014:1447-1
SUSE-SU-2014:1512-1
SUSE-SU-2014:1519-1
SUSE-SU-2014:1524-1
SUSE-SU-2014:1526-1
SUSE-SU-2014:1526-2
SUSE-SU-2014:1541-1
SUSE-SU-2014:1549-1
SUSE-SU-2014:1557-1
SUSE-SU-2014:1557-2
SUSE-SU-2014:1598-1
SUSE-SU-2015:0010-1
SUSE-SU-2015:0336-1
SUSE-SU-2015:0503-1
SUSE-SU-2016:1457-1
SUSE-SU-2016:1459-1
SUSE-SU-2016:2285-1
SUSE-SU-2016:2329-1
SUSE-SU-2016:2396-1
DLA-157-1
DLA-282-1
DLA-400-1
DSA-3053
DSA-3144
DSA-3147
DSA-3253
DSA-3489
USN-2486-1
USN-2487-1
CVE-2014-3566

References

suse-upgrade-apache2-mod_nss
suse-upgrade-claws-mail
suse-upgrade-claws-mail-lang
suse-upgrade-compat-openssl097g
suse-upgrade-compat-openssl097g-32bit
suse-upgrade-compat-openssl098
suse-upgrade-cyrus-imapd
suse-upgrade-cyrus-imapd-devel
suse-upgrade-evolution-data-server
suse-upgrade-evolution-data-server-32bit
suse-upgrade-evolution-data-server-devel
suse-upgrade-evolution-data-server-lang
suse-upgrade-evolution-data-server-x86
suse-upgrade-gnome-packagekit
suse-upgrade-gnome-packagekit-lang
suse-upgrade-java-1_5_0-ibm
suse-upgrade-java-1_5_0-ibm-32bit
suse-upgrade-java-1_5_0-ibm-alsa
suse-upgrade-java-1_5_0-ibm-alsa-32bit
suse-upgrade-java-1_5_0-ibm-devel
suse-upgrade-java-1_5_0-ibm-devel-32bit
suse-upgrade-java-1_5_0-ibm-fonts
suse-upgrade-java-1_5_0-ibm-jdbc
suse-upgrade-java-1_5_0-ibm-plugin
suse-upgrade-java-1_6_0-ibm
suse-upgrade-java-1_6_0-ibm-32bit
suse-upgrade-java-1_6_0-ibm-alsa
suse-upgrade-java-1_6_0-ibm-alsa-32bit
suse-upgrade-java-1_6_0-ibm-devel
suse-upgrade-java-1_6_0-ibm-devel-32bit
suse-upgrade-java-1_6_0-ibm-fonts
suse-upgrade-java-1_6_0-ibm-jdbc
suse-upgrade-java-1_6_0-ibm-plugin
suse-upgrade-java-1_6_0-ibm-plugin-32bit
suse-upgrade-java-1_7_0-ibm
suse-upgrade-java-1_7_0-ibm-alsa
suse-upgrade-java-1_7_0-ibm-devel
suse-upgrade-java-1_7_0-ibm-jdbc
suse-upgrade-java-1_7_0-ibm-plugin
suse-upgrade-java-1_7_0-openjdk
suse-upgrade-java-1_7_0-openjdk-demo
suse-upgrade-java-1_7_0-openjdk-devel
suse-upgrade-java-1_7_0-openjdk-headless
suse-upgrade-java-1_7_1-ibm
suse-upgrade-java-1_7_1-ibm-alsa
suse-upgrade-java-1_7_1-ibm-devel
suse-upgrade-java-1_7_1-ibm-jdbc
suse-upgrade-java-1_7_1-ibm-plugin
suse-upgrade-java-1_8_0-ibm
suse-upgrade-java-1_8_0-ibm-alsa
suse-upgrade-java-1_8_0-ibm-devel
suse-upgrade-java-1_8_0-ibm-plugin
suse-upgrade-libcamel-1_2-45
suse-upgrade-libcamel-1_2-45-32bit
suse-upgrade-libebackend-1_2-7
suse-upgrade-libebackend-1_2-7-32bit
suse-upgrade-libebook-1_2-14
suse-upgrade-libebook-1_2-14-32bit
suse-upgrade-libebook-contacts-1_2-0
suse-upgrade-libebook-contacts-1_2-0-32bit
suse-upgrade-libecal-1_2-16
suse-upgrade-libecal-1_2-16-32bit
suse-upgrade-libedata-book-1_2-20
suse-upgrade-libedata-book-1_2-20-32bit
suse-upgrade-libedata-cal-1_2-23
suse-upgrade-libedata-cal-1_2-23-32bit
suse-upgrade-libedataserver-1_2-18
suse-upgrade-libedataserver-1_2-18-32bit
suse-upgrade-libopenssl-1_0_0-devel
suse-upgrade-libopenssl-devel
suse-upgrade-libopenssl-devel-32bit
suse-upgrade-libopenssl0_9_8
suse-upgrade-libopenssl0_9_8-32bit
suse-upgrade-libopenssl0_9_8-debuginfo
suse-upgrade-libopenssl0_9_8-debuginfo-32bit
suse-upgrade-libopenssl0_9_8-debugsource
suse-upgrade-libopenssl0_9_8-hmac
suse-upgrade-libopenssl0_9_8-hmac-32bit
suse-upgrade-libopenssl0_9_8-x86
suse-upgrade-libopenssl1-devel
suse-upgrade-libopenssl1_0_0
suse-upgrade-libopenssl1_0_0-32bit
suse-upgrade-libopenssl1_0_0-debuginfo
suse-upgrade-libopenssl1_0_0-debuginfo-32bit
suse-upgrade-libopenssl1_0_0-hmac
suse-upgrade-libopenssl1_0_0-hmac-32bit
suse-upgrade-libopenssl1_0_0-x86
suse-upgrade-libpackagekit-glib2-16
suse-upgrade-libpackagekit-glib2-devel
suse-upgrade-libruby2_1-2_1
suse-upgrade-libserf
suse-upgrade-libserf-1-1
suse-upgrade-libserf-1-1-debuginfo
suse-upgrade-libserf-debugsource
suse-upgrade-libserf-devel
suse-upgrade-libsolv
suse-upgrade-libsolv-devel
suse-upgrade-libsolv-tools
suse-upgrade-libwsman-devel
suse-upgrade-libwsman1
suse-upgrade-libyui-ncurses-pkg
suse-upgrade-libyui-ncurses-pkg-devel
suse-upgrade-libyui-ncurses-pkg6
suse-upgrade-libyui-qt-pkg
suse-upgrade-libyui-qt-pkg-devel
suse-upgrade-libyui-qt-pkg6
suse-upgrade-libzypp
suse-upgrade-libzypp-bindings
suse-upgrade-libzypp-devel
suse-upgrade-monit
suse-upgrade-monit-debuginfo
suse-upgrade-monit-debugsource
suse-upgrade-monit-doc
suse-upgrade-openssl
suse-upgrade-openssl-1_0_0
suse-upgrade-openssl-1_0_0-doc
suse-upgrade-openssl-32bit
suse-upgrade-openssl-debuginfo
suse-upgrade-openssl-debugsource
suse-upgrade-openssl-devel
suse-upgrade-openssl-devel-32bit
suse-upgrade-openssl-doc
suse-upgrade-openssl1
suse-upgrade-openssl1-doc
suse-upgrade-openwsman-client
suse-upgrade-openwsman-python
suse-upgrade-openwsman-server
suse-upgrade-packagekit
suse-upgrade-packagekit-backend-zypp
suse-upgrade-packagekit-devel
suse-upgrade-packagekit-gstreamer-plugin
suse-upgrade-packagekit-lang
suse-upgrade-perl-cyrus-imap
suse-upgrade-perl-cyrus-sieve-managesieve
suse-upgrade-perl-solv
suse-upgrade-perl-zypp
suse-upgrade-pure-ftpd
suse-upgrade-python-solv
suse-upgrade-python-zypp
suse-upgrade-res-signingkeys
suse-upgrade-ruby2-1
suse-upgrade-ruby2-1-devel
suse-upgrade-ruby2-1-stdlib
suse-upgrade-slrn
suse-upgrade-slrn-debuginfo
suse-upgrade-slrn-debugsource
suse-upgrade-slrn-lang
suse-upgrade-smt
suse-upgrade-smt-support
suse-upgrade-suseregister
suse-upgrade-typelib-1_0-ebook-1_2
suse-upgrade-typelib-1_0-ebookcontacts-1_2
suse-upgrade-typelib-1_0-edataserver-1_2
suse-upgrade-typelib-1_0-packagekitglib-1_0
suse-upgrade-typelib-1_0-packagekitplugin-1_0
suse-upgrade-yast2-pkg-bindings
suse-upgrade-zypper
suse-upgrade-zypper-log

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2014-3566: SUSE Linux Security Advisory