Forthcoming OpenSSL release
Sam Roberts
vieuxtech at gmail.com
Wed Mar 11 17:42:13 UTC 2020
Will it include ONLY the CVE fix, or will it include other fixes, such
as to the getrandom() call on some archs?
commit 4dcb150ea30f9bbfa7946e6b39c30a86aca5ed02
Author: Kurt Roeckx <kurt at roeckx.be>
Date: Sat Sep 28 14:59:32 2019 +0200
Add defines for __NR_getrandom for all Linux architectures
Fixes: https://github.com/openssl/openssl/issues/10015
Reviewed-by: Bernd Edlinger <bernd.edlinger at hotmail.de>
GH: https://github.com/openssl/openssl/pull/10044
See https://github.com/nodejs/node/pull/32002 for background.
On Wed, Mar 11, 2020 at 8:53 AM Matt Caswell <matt at openssl.org> wrote:
>
> The OpenSSL project team would like to announce the forthcoming release
> of OpenSSL version 1.1.1e.
>
> This release will be made available on Tuesday 17th March 2020 between
> 1300-1700 UTC. This will contain one LOW severity fix for CVE-2019-1551
> previously announced here:
> https://www.openssl.org/news/secadv/20191206.txt
>
> Please see the following page for further details of severity levels:
> https://www.openssl.org/policies/secpolicy.html
>
> Yours
>
> The OpenSSL Project Team
More information about the openssl-users
mailing list