Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
OpenSSL Security Advisory (CVE-2023-2650) (openssl.org)
3 points by petecooper on May 30, 2023 | hide | past | favorite | 1 comment


Context:

>OpenSSL 3.0.x and 3.1.x are vulnerable to this issue.

>OpenSSL 1.1.1 and 1.0.2 users may be affected by this issue when calling OBJ_obj2txt() directly.

>OpenSSL 3.0 users should upgrade to OpenSSL 3.0.9.

>OpenSSL 3.1 users should upgrade to OpenSSL 3.1.1.

>OpenSSL 1.1.1 users should upgrade to OpenSSL 1.1.1u.

>OpenSSL 1.0.2 users should upgrade to OpenSSL 1.0.2zh (premium support customers only).




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: