[openssl-commits] [web] master update
Paul I. Dale
pauli at openssl.org
Thu Nov 1 22:41:29 UTC 2018
The branch master has been updated
via b78d963402ca83b6ede75f1a5d42d64ca61c2c49 (commit)
from ec4583cb047f1dd56918b38f5a36941747d50d28 (commit)
- Log -----------------------------------------------------------------
commit b78d963402ca83b6ede75f1a5d42d64ca61c2c49
Author: Pauli <paul.dale at oracle.com>
Date: Fri Nov 2 08:40:27 2018 +1000
Update advisory for CVE-2018-0734 indicating that it introduced a new issue
and that this has been fixed. Git commit versions are included.
-----------------------------------------------------------------------
Summary of changes:
news/secadv/20181030.txt | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/news/secadv/20181030.txt b/news/secadv/20181030.txt
index b33ac41..7569b56 100644
--- a/news/secadv/20181030.txt
+++ b/news/secadv/20181030.txt
@@ -19,6 +19,11 @@ git repository.
This issue was reported to OpenSSL on 16th October 2018 by Samuel Weiser.
+As a result of the changes made to mitigate this vulnerability, a new
+side channel attack was created. The mitigation for this new vulnerability
+can be found in these commits: 6039651c43 (for 1.1.1), 26d7fce13d (for 1.1.0)
+and 880d1c76ed (for 1.0.2)
+
References
==========
More information about the openssl-commits
mailing list