Bugzilla – Bug 1089100
VUL-0: CVE-2018-9860: Botan: off by one error in TLS CBC decryption
Last modified: 2018-04-18 22:55:57 UTC
2018-04-10 (CVE-2018-9860): Memory overread in TLS CBC decryption
An off by one error in TLS CBC decryption meant that for a particular malformed ciphertext, the receiver would miscompute a length field and HMAC exactly 64K bytes of data following the record buffer as if it was part of the message. This cannot be used to leak information since the MAC comparison will subsequently fail and the connection will be closed. However it might be used for denial of service. Found by OSS-Fuzz.
Bug introduced in 1.11.32, fixed in 2.6.0
openSUSE:Factory got already version 2.6.0. All other SLE/openSUSE versions are pre 1.11.32.
Closing as fixed.