diff --git a/disable-tls13-to-support-older-openssl-versions.patch b/disable-tls13-to-support-older-openssl-versions.patch
new file mode 100644
index 0000000..4bdd999
--- /dev/null
+++ b/disable-tls13-to-support-older-openssl-versions.patch
@@ -0,0 +1,14 @@
+Index: vsftpd-3.0.5/ssl.c
+===================================================================
+--- vsftpd-3.0.5.orig/ssl.c
++++ vsftpd-3.0.5/ssl.c
+@@ -95,7 +95,9 @@ ssl_init(struct vsf_session* p_sess)
+     }
+     if (!tunable_tlsv1_3)
+     {
++#ifdef SSL_OP_NO_TLSv1_3
+       options |= SSL_OP_NO_TLSv1_3;
++#endif
+     }
+     SSL_CTX_set_options(p_ctx, options);
+     if (tunable_rsa_cert_file)
diff --git a/vsftpd.changes b/vsftpd.changes
index 486640e..772ec0b 100644
--- a/vsftpd.changes
+++ b/vsftpd.changes
@@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Thu Aug 25 08:23:08 UTC 2022 - Peter Simons <psimons@suse.com>
+
+- Apply "disable-tls13-to-support-older-openssl-versions.patch"
+  when building on SLE-15. This is necessary, because openssl_1_1
+  on that codestream is version 1.1.0 rather than 1.1.1 and that
+  older version has no TLSv1.3 support.
+
 -------------------------------------------------------------------
 Wed Jun 29 13:53:16 UTC 2022 - Stefan Schubert <schubi@suse.com>
 
diff --git a/vsftpd.spec b/vsftpd.spec
index e91f7ec..3d6a02e 100644
--- a/vsftpd.spec
+++ b/vsftpd.spec
@@ -100,8 +100,13 @@ BuildRequires:  libcap-devel
 %if 0%{?suse_version} == 1315
 BuildRequires:  libopenssl-1_1-devel >= 1.1.1
 %else
+%if 0%{?sle_version} == 150000
+BuildRequires:  libopenssl-1_1-devel >= 1.1.0
+Patch99:        disable-tls13-to-support-older-openssl-versions.patch
+%else
 BuildRequires:  libopenssl-devel >= 1.1.1
 %endif
+%endif
 BuildRequires:  pam-devel
 Requires:       logrotate
 Requires(pre):  shadow