oss-sec mailing list archives

Re: OpenSSL Security Advisory

From: sjw () gmx ch
Date: Thu, 25 Jan 2024 22:57:21 +0100

I assume the missing commits are commit775acfdbd0c6af9ac855f34969cdab0c0c90844a (for 3.2), commitd135eeab8a5dbf72b3da5240bab9ddb7678dbd2c (for 3.1) and commit09df4395b5071217b76dc7d3d2e630eb8c5a79c2 (for 3.0), according to theircommit messages.

Due to the low severity of this issue we are not issuing new releases of
OpenSSL at this time. The fix will be included in the next releases when they
become available. The fix is also available in commit x (for 3.2),
commit x (for 3.1) and commit x (for 3.0) in the OpenSSL git
repository.

Attachment: OpenPGP_signature.asc
Description: OpenPGP digital signature

Current thread:

OpenSSL Security Advisory Tomas Mraz (Jan 09)
- <Possible follow-ups>
- OpenSSL Security Advisory Tomas Mraz (Jan 15)
- OpenSSL Security Advisory Matt Caswell (Jan 25)
  - Re: OpenSSL Security Advisory sjw (Jan 25)