colinardo
Jul 06, 2022, updated at 14:24:50 (UTC)
view3243
view0
3
Goto Top

OpenSSL version 3.0.4 affected by serious security vulnerability

InformationSecurity
Admins/users running OpenSSL version 3.0.4 dated June 21, 2022 should update their systems to version 3.0.5 as soon as possible. The vulnerability allows remote code execution to execute foreign code on the affected systems.
The above mentioned version is affected on systems that support the AVX512IFMA CPU extensions and occurs in connection with RSA 2048bit private keys. OpenSSL branches 1.1.1 and 1.0.2 are not affected.

OpenSSL Security Advisory [5 July 2022]

Regards
@colinardo
comment-contentCommentShareShare
Share on Facebook Share on Twitter Share on Reddit Share on Linkedin

Content-Key: 3268441470

Url: https://administrator.de/contentid/3268441470

Printed on: April 18, 2024 at 06:04 o'clock

InformationSecurity
More from colinardocolinardoNPS 802.1x Radius Authentication with EAP-TLS and strong certificate mapping for non domain joined devicescolinardo - 1 CommentcolinardoOutlook 2016 + 2019 : Fix Meetings are created as Teams Online Meetings by defaultcolinardo - 3 CommentscolinardoMikrotik: mDNS Repeater as Docker-Container on the Router (ARM,ARM64,X86)colinardocolinardoMikrotik Scripting: Resolve Domain to IPv6 Addresscolinardo - 1 Comment
Hotly discussed
AlexWishaHow to set up and configure a Linux GRE tunnelAlexWisha - 3 CommentsDaniEnd of Support dates for Office 2016, 2019 Apps und Productivity ServersDani - 1 Comment