rsalz at akamai.com
Thu Aug 11 12:23:10 UTC 2016
There is no test. That fix can be applied. 1.0.0 is really old and unsupported, you should upgrade as soon as possible
Senior Architect, Akamai Technologies
IM: richsalz at jabber.at Twitter: RichSalz
From: siva gopi raju kudeti [mailto:sivagopi059 at gmail.com]
Sent: Thursday, August 11, 2016 6:18 AM
To: openssl-users at openssl.org
Subject: [openssl-users] CVE-2016-2180
Hi OpenSSL team,
I am using openssl-1.0.0e in my product. Here i want to know that OpenSSL is CVE-2016-2180 vulnerable or not.
In this page showing some modifications to the function TS_OBJ_print_bio. Is these changes are fix this vulnerability?
Here i don't know how to test this vulnerability.
Can you please provide me with the test process or ant other information about this vulnerability to go further.
I will wait for your reply.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the openssl-users