[openssl-commits] [web] master update

Paul I. Dale pauli at openssl.org
Thu Nov 1 22:41:29 UTC 2018

The branch master has been updated
       via  b78d963402ca83b6ede75f1a5d42d64ca61c2c49 (commit)
      from  ec4583cb047f1dd56918b38f5a36941747d50d28 (commit)

- Log -----------------------------------------------------------------
commit b78d963402ca83b6ede75f1a5d42d64ca61c2c49
Author: Pauli <paul.dale at oracle.com>
Date:   Fri Nov 2 08:40:27 2018 +1000

    Update advisory for CVE-2018-0734 indicating that it introduced a new issue
    and that this has been fixed.  Git commit versions are included.


Summary of changes:
 news/secadv/20181030.txt | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/news/secadv/20181030.txt b/news/secadv/20181030.txt
index b33ac41..7569b56 100644
--- a/news/secadv/20181030.txt
+++ b/news/secadv/20181030.txt
@@ -19,6 +19,11 @@ git repository.
 This issue was reported to OpenSSL on 16th October 2018 by Samuel Weiser.
+As a result of the changes made to mitigate this vulnerability, a new
+side channel attack was created.  The mitigation for this new vulnerability
+can be found in these commits: 6039651c43 (for 1.1.1), 26d7fce13d (for 1.1.0)
+and 880d1c76ed (for 1.0.2)

More information about the openssl-commits mailing list