Re: OpenSSL 1.1.1o in 12.3?
- In reply to: Natalino Picone : "OpenSSL 1.1.1o in 12.3?"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Mon, 09 May 2022 18:31:01 UTC
The only vulnerability in 1.1.1 was regarding the c_rehash script, which we don't ship as part of FreeBSD. As such, we didn't push it into so-maintained releng branches. Best, Gordon Hat: security-officer > On May 9, 2022, at 12:37 AM, Natalino Picone <natalino.picone@nozominetworks.com> wrote: > > Hi, > I was looking at the latest OpenSSL CVE. > Should this also be merged on 12.3? right now it has been done only on 13.1 > > https://github.com/freebsd/freebsd-src/commit/2e121bd7c73932ac52332b53ebd7824965e6a7b4 <https://github.com/freebsd/freebsd-src/commit/2e121bd7c73932ac52332b53ebd7824965e6a7b4> > > Thanks, > Nat > > > > Natalino Picone > Senior Product Security Engineer > • Phone: +41 (0)91 647 04 06 > • natalino.picone@nozominetworks.com <mailto:natalino.picone@nozominetworks.com> > > Nozomi Networks <https://www.nozominetworks.com/company/overview/> | The Leader in OT & IoT Security > Website <https://www.nozominetworks.com/> | Blog <https://www.nozominetworks.com/blog/> | Twitter <https://twitter.com/nozominetworks> | Linkedin | <https://www.linkedin.com/company/nozomi-networks-sa/>YouTube <https://www.youtube.com/channel/UCcYhFsbFID6gwkU8DjfIycw> | Podcast <https://www.buzzsprout.com/1012066> > > <Outlook-ivda3igo.png> <https://www.nozominetworks.com/>