libxcrypt in SUSE openSUSE 11.0 uses the DES algorithm when the configuration specifies the MD5 algorithm, which makes it easier for attackers to conduct brute-force attacks against hashed passwords.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3188)