oss-sec mailing list archives
Re: OpenSSL Security Advisory
From: sjw () gmx ch
Date: Thu, 25 Jan 2024 22:57:21 +0100
I assume the missing commits are commit 775acfdbd0c6af9ac855f34969cdab0c0c90844a (for 3.2), commit d135eeab8a5dbf72b3da5240bab9ddb7678dbd2c (for 3.1) and commit 09df4395b5071217b76dc7d3d2e630eb8c5a79c2 (for 3.0), according to their commit messages.
Due to the low severity of this issue we are not issuing new releases of OpenSSL at this time. The fix will be included in the next releases when they become available. The fix is also available in commit x (for 3.2), commit x (for 3.1) and commit x (for 3.0) in the OpenSSL git repository.
Attachment:
OpenPGP_signature.asc
Description: OpenPGP digital signature
Current thread:
- OpenSSL Security Advisory Tomas Mraz (Jan 09)
- <Possible follow-ups>
- OpenSSL Security Advisory Tomas Mraz (Jan 15)
- OpenSSL Security Advisory Matt Caswell (Jan 25)
- Re: OpenSSL Security Advisory sjw (Jan 25)