Re: OpenSSL 1.1.1o in 12.3?

From: Gordon Tetlow <gordon_at_tetlows.org>
Date: Mon, 09 May 2022 18:31:01 UTC
The only vulnerability in 1.1.1 was regarding the c_rehash script, which we don't ship as part of FreeBSD. As such, we didn't push it into so-maintained releng branches.

Best,
Gordon
Hat: security-officer

> On May 9, 2022, at 12:37 AM, Natalino Picone <natalino.picone@nozominetworks.com> wrote:
> 
> Hi,
> I was looking at the latest OpenSSL CVE.
> Should this also be merged on 12.3? right now it has been done only on 13.1
> 
> https://github.com/freebsd/freebsd-src/commit/2e121bd7c73932ac52332b53ebd7824965e6a7b4 <https://github.com/freebsd/freebsd-src/commit/2e121bd7c73932ac52332b53ebd7824965e6a7b4>
> 
> Thanks,
> Nat
> 
> 
> 
> Natalino Picone 
> Senior Product Security Engineer
> • Phone: +41 (0)91 647 04 06
> • natalino.picone@nozominetworks.com <mailto:natalino.picone@nozominetworks.com>
> 
> Nozomi Networks <https://www.nozominetworks.com/company/overview/> | The Leader in OT & IoT Security 
> Website <https://www.nozominetworks.com/> | Blog <https://www.nozominetworks.com/blog/> | Twitter <https://twitter.com/nozominetworks> | Linkedin |  <https://www.linkedin.com/company/nozomi-networks-sa/>YouTube <https://www.youtube.com/channel/UCcYhFsbFID6gwkU8DjfIycw> | Podcast <https://www.buzzsprout.com/1012066>  
> 
> <Outlook-ivda3igo.png> <https://www.nozominetworks.com/>