CVE-2013-4073
SLE SDK 10 SP4 for IBM iSeries and IBM pSeries,SLE SDK 10 SP4 for IBM zSeries,SLE SDK 10 SP4 for IPF,SLE SDK 10 SP4 for X86-64,SLE SDK 10 SP4 for x86,SUSE Lifecycle Management Server 1.3,SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T,SUSE Linux Enterprise Desktop 10 SP4 for x86,SUSE Linux Enterprise Desktop 11 SP2,SUSE Linux Enterprise Desktop 11 SP3,SUSE Linux Enterprise Server 11 SP1 LTSS,SUSE Linux Enterprise Server 11 SP2,SUSE Linux Enterprise Server 11 SP2 LTSS,SUSE Linux Enterprise Server 11 SP2 for VMware,SUSE Linux Enterprise Server 11 SP3,SUSE Linux Enterprise Server 11 SP3 for VMware,SUSE Linux Enterprise Software Development Kit 11 SP2,SUSE Linux Enterprise Software Development Kit 11 SP3,SUSE Studio Onsite 1.3,WebYaST 1.3
CVE-2013-4073, security advisory, novell, suse linux, suse, security, cve

CVE-2013-4073

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-4073 at MITRE

Description

The OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7-p374, 1.9 before 1.9.3-p448, and 2.0 before 2.0.0-p247 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.

SUSE information

CVSS v2 Scores
  National Vulnerability Database SUSE
Base Score 6.82 6.11
Vector AV:N/AC:M/Au:N/C:P/I:P/A:P AV:N/AC:H/Au:S/C:C/I:P/A:P
Access Vector Network Network
Access Complexity Medium High
Authentication None Single
Confidentiality Impact Partial Complete
Integrity Impact Partial Partial
Availability Impact Partial Partial
SUSE Bugzilla entries: 827265 [RESOLVED / FIXED], 834601 [RESOLVED / FIXED], 839107 [ASSIGNED], 876588 [RESOLVED / DUPLICATE], 880222 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Lifecycle Management Server 1.3
  • ruby-devel >= 1.8.7.p357-0.9.11.1
Patchnames:
sleslms13-ruby
SUSE Linux Enterprise Desktop 11 SP2
  • ruby >= 1.8.7.p357-0.9.11.1
Patchnames:
sledsp2-ruby
SUSE Linux Enterprise Desktop 11 SP3
  • libpython2_6-1_0 >= 2.6.9-0.25.1
  • libpython2_6-1_0-32bit >= 2.6.9-0.25.1
  • python >= 2.6.9-0.25.1
  • python-base >= 2.6.9-0.25.1
  • python-base-32bit >= 2.6.9-0.25.1
  • python-curses >= 2.6.9-0.25.1
  • python-devel >= 2.6.9-0.25.1
  • python-tk >= 2.6.9-0.25.1
  • python-xml >= 2.6.9-0.25.1
  • ruby >= 1.8.7.p357-0.9.11.1
Patchnames:
sledsp3-python-201402
sledsp3-ruby
SUSE Linux Enterprise Server 11 SP1-LTSS
  • ruby >= 1.8.7.p357-0.9.15.6
  • ruby-doc-html >= 1.8.7.p357-0.9.15.6
  • ruby-tk >= 1.8.7.p357-0.9.15.6
Patchnames:
slessp1-ruby
SUSE Linux Enterprise Server 11 SP2
  • ruby >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Patchnames:
slessp2-ruby
SUSE Linux Enterprise Server 11 SP2-LTSS
  • ruby >= 1.8.7.p357-0.9.15.6
  • ruby-doc-html >= 1.8.7.p357-0.9.15.6
  • ruby-tk >= 1.8.7.p357-0.9.15.6
Patchnames:
slessp2-ruby
SUSE Linux Enterprise Server 11 SP3
  • libpython2_6-1_0 >= 2.6.9-0.25.1
  • libpython2_6-1_0-32bit >= 2.6.9-0.25.1
  • libpython2_6-1_0-x86 >= 2.6.9-0.25.1
  • python >= 2.6.9-0.25.1
  • python-32bit >= 2.6.9-0.25.1
  • python-base >= 2.6.9-0.25.1
  • python-base-32bit >= 2.6.9-0.25.1
  • python-base-x86 >= 2.6.9-0.25.1
  • python-curses >= 2.6.9-0.25.1
  • python-demo >= 2.6.9-0.25.1
  • python-doc >= 2.6-8.25.1
  • python-doc-pdf >= 2.6-8.25.1
  • python-gdbm >= 2.6.9-0.25.1
  • python-idle >= 2.6.9-0.25.1
  • python-tk >= 2.6.9-0.25.1
  • python-x86 >= 2.6.9-0.25.1
  • python-xml >= 2.6.9-0.25.1
  • ruby >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Patchnames:
slessp3-python-201402
slessp3-ruby
SUSE Linux Enterprise Server for VMWare 11 SP2
  • ruby >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Patchnames:
slessp2-ruby
SUSE Linux Enterprise Server for VMWare 11 SP3
  • libpython2_6-1_0 >= 2.6.9-0.25.1
  • libpython2_6-1_0-32bit >= 2.6.9-0.25.1
  • libpython2_6-1_0-x86 >= 2.6.9-0.25.1
  • python >= 2.6.9-0.25.1
  • python-32bit >= 2.6.9-0.25.1
  • python-base >= 2.6.9-0.25.1
  • python-base-32bit >= 2.6.9-0.25.1
  • python-base-x86 >= 2.6.9-0.25.1
  • python-curses >= 2.6.9-0.25.1
  • python-demo >= 2.6.9-0.25.1
  • python-doc >= 2.6-8.25.1
  • python-doc-pdf >= 2.6-8.25.1
  • python-gdbm >= 2.6.9-0.25.1
  • python-idle >= 2.6.9-0.25.1
  • python-tk >= 2.6.9-0.25.1
  • python-x86 >= 2.6.9-0.25.1
  • python-xml >= 2.6.9-0.25.1
  • ruby >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Patchnames:
slessp3-python-201402
slessp3-ruby
SUSE Linux Enterprise Software Development Kit 11 SP2
  • ruby-devel >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-doc-ri >= 1.8.7.p357-0.9.11.1
  • ruby-examples >= 1.8.7.p357-0.9.11.1
  • ruby-test-suite >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Patchnames:
sdksp2-ruby
SUSE Linux Enterprise Software Development Kit 11 SP3
  • python-32bit >= 2.6.9-0.25.1
  • python-demo >= 2.6.9-0.25.1
  • python-devel >= 2.6.9-0.25.1
  • python-doc >= 2.6-8.25.1
  • python-doc-pdf >= 2.6-8.25.1
  • python-gdbm >= 2.6.9-0.25.1
  • python-idle >= 2.6.9-0.25.1
  • python-tk >= 2.6.9-0.25.1
  • ruby-devel >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-doc-ri >= 1.8.7.p357-0.9.11.1
  • ruby-examples >= 1.8.7.p357-0.9.11.1
  • ruby-test-suite >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Patchnames:
sdksp3-python-201402
sdksp3-ruby
SUSE Studio Onsite 1.3
  • ruby19 >= 1.9.3.p392-0.11.1
  • ruby19-devel >= 1.9.3.p392-0.11.1
  • ruby19-devel-extra >= 1.9.3.p392-0.11.1
Patchnames:
slestso13-ruby19
SUSE WebYast 1.3
  • ruby-devel >= 1.8.7.p357-0.9.11.1
Patchnames:
slewyst13-ruby
SUSE Studio Onsite 1.3
  • ruby19 >= 1.9.3.p392-0.11.1
  • ruby19-devel >= 1.9.3.p392-0.11.1
  • ruby19-devel-extra >= 1.9.3.p392-0.11.1
Builds
SAT Patch Nr: 8034
SUSE Linux Enterprise Software Development Kit 11 SP3
  • python-demo >= 2.6.9-0.3.1
  • python-devel >= 2.6.9-0.3.1
  • python-doc >= 2.6-8.3.1
  • python-doc-pdf >= 2.6-8.3.1
  • python-gdbm >= 2.6.9-0.3.1
  • python-idle >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Software Development Kit 11 SP3
  • python-devel >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Software Development Kit 11 SP3
  • python-32bit >= 2.6.9-0.3.1
  • python-demo >= 2.6.9-0.3.1
  • python-devel >= 2.6.9-0.3.1
  • python-doc >= 2.6-8.3.1
  • python-doc-pdf >= 2.6-8.3.1
  • python-gdbm >= 2.6.9-0.3.1
  • python-idle >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Desktop 11 SP3
  • libpython2_6-1_0 >= 2.6.9-0.3.1
  • python >= 2.6.9-0.3.1
  • python-base >= 2.6.9-0.3.1
  • python-curses >= 2.6.9-0.3.1
  • python-devel >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
  • python-xml >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Desktop 11 SP3
  • libpython2_6-1_0 >= 2.6.9-0.3.1
  • libpython2_6-1_0-32bit >= 2.6.9-0.3.1
  • python >= 2.6.9-0.3.1
  • python-base >= 2.6.9-0.3.1
  • python-base-32bit >= 2.6.9-0.3.1
  • python-curses >= 2.6.9-0.3.1
  • python-devel >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
  • python-xml >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • libpython2_6-1_0 >= 2.6.9-0.3.1
  • python >= 2.6.9-0.3.1
  • python-base >= 2.6.9-0.3.1
  • python-curses >= 2.6.9-0.3.1
  • python-demo >= 2.6.9-0.3.1
  • python-doc >= 2.6-8.3.1
  • python-doc-pdf >= 2.6-8.3.1
  • python-gdbm >= 2.6.9-0.3.1
  • python-idle >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
  • python-xml >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • libpython2_6-1_0 >= 2.6.9-0.3.1
  • libpython2_6-1_0-32bit >= 2.6.9-0.3.1
  • python >= 2.6.9-0.3.1
  • python-32bit >= 2.6.9-0.3.1
  • python-base >= 2.6.9-0.3.1
  • python-base-32bit >= 2.6.9-0.3.1
  • python-curses >= 2.6.9-0.3.1
  • python-demo >= 2.6.9-0.3.1
  • python-doc >= 2.6-8.3.1
  • python-doc-pdf >= 2.6-8.3.1
  • python-gdbm >= 2.6.9-0.3.1
  • python-idle >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
  • python-xml >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Server 11 SP3
  • libpython2_6-1_0 >= 2.6.9-0.3.1
  • libpython2_6-1_0-x86 >= 2.6.9-0.3.1
  • python >= 2.6.9-0.3.1
  • python-base >= 2.6.9-0.3.1
  • python-base-x86 >= 2.6.9-0.3.1
  • python-curses >= 2.6.9-0.3.1
  • python-demo >= 2.6.9-0.3.1
  • python-doc >= 2.6-8.3.1
  • python-doc-pdf >= 2.6-8.3.1
  • python-gdbm >= 2.6.9-0.3.1
  • python-idle >= 2.6.9-0.3.1
  • python-tk >= 2.6.9-0.3.1
  • python-x86 >= 2.6.9-0.3.1
  • python-xml >= 2.6.9-0.3.1
Builds
SAT Patch Nr: 8892
SUSE Linux Enterprise Software Development Kit 11 SP3
  • ruby-devel >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-doc-ri >= 1.8.7.p357-0.9.11.1
  • ruby-examples >= 1.8.7.p357-0.9.11.1
  • ruby-test-suite >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8027
SUSE Linux Enterprise Desktop 11 SP3
  • ruby >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8027
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • ruby >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8027
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for x86
  • ruby >= 1.8.6.p369-0.16.1
Builds
ZYPP Patch Nr: 8639
SLE SDK 10 SP4 for IBM iSeries and IBM pSeries
SLE SDK 10 SP4 for IBM zSeries
SLE SDK 10 SP4 for IPF
SLE SDK 10 SP4 for X86-64
SLE SDK 10 SP4 for x86
  • ruby >= 1.8.6.p369-0.16.1
  • ruby-devel >= 1.8.6.p369-0.16.1
  • ruby-doc-html >= 1.8.6.p369-0.16.1
  • ruby-doc-ri >= 1.8.6.p369-0.16.1
  • ruby-examples >= 1.8.6.p369-0.16.1
  • ruby-test-suite >= 1.8.6.p369-0.16.1
  • ruby-tk >= 1.8.6.p369-0.16.1
Builds
ZYPP Patch Nr: 8639
SUSE Linux Enterprise Server 11 SP1 LTSS
  • ruby >= 1.8.7.p357-0.9.15.6
  • ruby-doc-html >= 1.8.7.p357-0.9.15.6
  • ruby-tk >= 1.8.7.p357-0.9.15.6
Builds
SAT Patch Nr: 9312
SUSE Linux Enterprise Server 11 SP2 LTSS
  • ruby >= 1.8.7.p357-0.9.15.6
  • ruby-doc-html >= 1.8.7.p357-0.9.15.6
  • ruby-tk >= 1.8.7.p357-0.9.15.6
Builds
SAT Patch Nr: 9313
SUSE Linux Enterprise Software Development Kit 11 SP2
  • ruby-devel >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-doc-ri >= 1.8.7.p357-0.9.11.1
  • ruby-examples >= 1.8.7.p357-0.9.11.1
  • ruby-test-suite >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8026
SUSE Lifecycle Management Server 1.3
WebYaST 1.3
  • ruby-devel >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8026
SUSE Linux Enterprise Desktop 11 SP2
  • ruby >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8026
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • ruby >= 1.8.7.p357-0.9.11.1
  • ruby-doc-html >= 1.8.7.p357-0.9.11.1
  • ruby-tk >= 1.8.7.p357-0.9.11.1
Builds
SAT Patch Nr: 8026
openSUSE 12.3
  • ruby19 >= 1.9.3.p392-1.9.1
  • ruby19-debuginfo >= 1.9.3.p392-1.9.1
  • ruby19-debugsource >= 1.9.3.p392-1.9.1
  • ruby19-devel >= 1.9.3.p392-1.9.1
  • ruby19-devel-extra >= 1.9.3.p392-1.9.1
  • ruby19-doc-ri >= 1.9.3.p392-1.9.1
  • ruby19-tk >= 1.9.3.p392-1.9.1
  • ruby19-tk-debuginfo >= 1.9.3.p392-1.9.1
Patchnames:
openSUSE-2013-575
openSUSE Evergreen 11.4
  • ruby >= 1.8.7.p357-0.36.1
  • ruby-debuginfo >= 1.8.7.p357-0.36.1
  • ruby-debugsource >= 1.8.7.p357-0.36.1
  • ruby-devel >= 1.8.7.p357-0.36.1
  • ruby-doc-html >= 1.8.7.p357-0.36.1
  • ruby-doc-ri >= 1.8.7.p357-0.36.1
  • ruby-examples >= 1.8.7.p357-0.36.1
  • ruby-test-suite >= 1.8.7.p357-0.36.1
  • ruby-tk >= 1.8.7.p357-0.36.1
  • ruby-tk-debuginfo >= 1.8.7.p357-0.36.1
Patchnames:
2013-107