Opened 18 months ago

Closed 18 months ago

Last modified 16 months ago

#5267 closed enhancement (fixed)

openssl-3.1.1

Reported by: Douglas R. Reno Owned by: Bruce Dubbs
Priority: high Milestone: 12.0
Component: Book Version: git
Severity: normal Keywords:
Cc:

Description

New point version

Has several security fixes in it

Change History (5)

comment:1 by Bruce Dubbs, 18 months ago

Owner: changed from lfs-book to Bruce Dubbs
Status: newassigned

comment:2 by Bruce Dubbs, 18 months ago

Major changes between OpenSSL 3.1.0 and OpenSSL 3.1.1 [30 May 2023]

  • Mitigate for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. ([CVE-2023-2650])
  • Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms ([CVE-2023-1255])
  • Fixed documentation of X509_VERIFY_PARAM_add0_policy() ([CVE-2023-0466])
  • Fixed handling of invalid certificate policies in leaf certificates ([CVE-2023-0465])
  • Limited the number of nodes created in a policy tree ([CVE-2023-0464])

comment:3 by Bruce Dubbs, 18 months ago

Resolution: fixed
Status: assignedclosed

Fixed at commit 87fbad76f17664bcfd92aa3272a4b432c10c3db7

comment:4 by Douglas R. Reno, 18 months ago

SA-11.3-033 issued

comment:5 by Bruce Dubbs, 16 months ago

Milestone: 11.412.0

Milestone renamed

Note: See TracTickets for help on using tickets.