Jump to content
Compatible Support Forums
Sign in to follow this  
Followers 0
news

[SECURITY] [DLA 358-1] openssl security update

By news, in Upcoming News

Recommended Posts

news    28

news
Posted

Package : openssl

Version : 0.9.8o-4squeeze22

CVE ID : CVE-2015-3195

 

When presented with a malformed X509_ATTRIBUTE structure OpenSSL will leak

memory. This structure is used by the PKCS#7 and CMS routines so any

application which reads PKCS#7 or CMS data from untrusted sources is affected.

SSL/TLS is not affected.

 

 

 

Kurt

 

 

 

Share this post

Link to post

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
Sign in to follow this  
Followers 0
Go To Topic Listing Upcoming News
×