<div dir="auto">Does CVE-2019-1559  is related to these vulnerability.<div dir="auto"><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, 27 Feb 2019, 4:48 pm Matt Caswell, <<a href="mailto:matt@openssl.org">matt@openssl.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><br>
<br>
On 27/02/2019 11:07, Manish Patidar wrote:<br>
> <br>
> Hi, <br>
> There has been two vulnerability reported: golden doodle and zombie poddle. <br>
> Does it impact openssl 1.1.1 or 1.0.2 version ? <br>
> <br>
> <a href="https://www.tripwire.com/state-of-security/vulnerability-management/zombie-poodle-goldendoodle/" rel="noreferrer noreferrer" target="_blank">https://www.tripwire.com/state-of-security/vulnerability-management/zombie-poodle-goldendoodle/</a><br>
<br>
These issues haven't been reported to openssl-security. From that blog bost<br>
zombie poodle only seems to affect Citrix products<br>
(<a href="https://support.citrix.com/article/CTX240139" rel="noreferrer noreferrer" target="_blank">https://support.citrix.com/article/CTX240139</a>). There are very little details<br>
about the "goldennoodle" vulnerability. Given that this hasn't been reported to<br>
us I would assume that OpenSSL is not vulnerable.<br>
<br>
Matt<br>
<br>
</blockquote></div>