[openssl-users] OpenSSL 1.0.2: CVE-2018-5407 PortSmash

Misaki Miyashita misaki.miyashita at oracle.com
Thu Nov 8 13:25:03 UTC 2018


Thanks for the info and the fix, BBB.

Regards,

-- misaki

On 11/8/2018 6:26 AM, Billy Brumley wrote:
> Howdy,
>
>> According to the following website:
>>       https://www.openwall.com/lists/oss-security/2018/11/01/4
>>
>> OpenSSL <= 1.1.0h is affected.
>> Does that mean the problem also exist in the OpenSSL 1.0.2 release?
> Yes, it does. Pending review:
>
> https://github.com/openssl/openssl/pull/7593
>
> BBB



More information about the openssl-users mailing list