[Info-vax] Upcoming patch for major security flaw in OpenSSL 3.x
Simon Clubley
clubley at remove_me.eisner.decus.org-Earth.UFP
Fri Nov 4 09:59:05 EDT 2022
On 2022-11-03, Stephen Hoffman <seaohveh at hoffmanlabs.invalid> wrote:
> On 2022-10-28 13:03:54 +0000, Simon Clubley said:
>
>> There is a major security flaw affecting OpenSSL 3.x that is critical
>> enough to announce in advance of the actual patch being released next
>> week:
>
> Downgraded to HIGH, and might arguably be MEDIUM given the requirements.
>
Given the initial publicity, this is a really bad screwup on the part
of OpenSSL because the next time a genuine critical one is issued, some
people may not take it as seriously they should.
Simon.
--
Simon Clubley, clubley at remove_me.eisner.decus.org-Earth.UFP
Walking destinations on a map are further away than they appear.
More information about the Info-vax
mailing list