[openssl-users] OpenSSL 1.0.2: CVE-2018-5407 PortSmash
Misaki Miyashita
misaki.miyashita at oracle.com
Thu Nov 8 13:25:03 UTC 2018
Thanks for the info and the fix, BBB.
Regards,
-- misaki
On 11/8/2018 6:26 AM, Billy Brumley wrote:
> Howdy,
>
>> According to the following website:
>> https://www.openwall.com/lists/oss-security/2018/11/01/4
>>
>> OpenSSL <= 1.1.0h is affected.
>> Does that mean the problem also exist in the OpenSSL 1.0.2 release?
> Yes, it does. Pending review:
>
> https://github.com/openssl/openssl/pull/7593
>
> BBB
More information about the openssl-users
mailing list