[Pkg-openssl-devel] Security incident on openssl
Russ, Andre
andre.russ at sap.com
Mon Apr 3 13:19:36 BST 2023
Hi,
The Debian webpage https://security-tracker.debian.org/tracker/CVE-2023-0464 states there is no fix. That is WRONG.
Since 3 weeks there is a new release: https://github.com/openssl/openssl/releases/tag/openssl-3.1.0
I think this CVE https://nvd.nist.gov/vuln/detail/CVE-2023-0464 has a score of 7.5 and we should just run another publish job or shouldn’t we?
Best
Andre
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-openssl-devel/attachments/20230403/9b9cf4a2/attachment.htm>
More information about the Pkg-openssl-devel
mailing list