[SECURITY-L] OpenSSL Critical Vulnerability Disclosure
CSIRT Unicamp
security em unicamp.br
Segunda Outubro 31 09:07:36 -03 2022
Critical OpenSSL fix due Nov 1—what you need to know
Posted: October 27, 2022 by Malwarebytes Labs
A fix for a critical issue in OpenSSL is on the way, announced in advance
of its release on November 1, 2022, in a four hour window between 13:00 UTC
and 17:00 UTC. The release, version 3.0.7, will address a critical
vulnerability for all versions of the software starting with a 3. Versions
starting with a 1 are unaffected. A separate release for that branch of the
software, version 1.1.1, is scheduled for the same day but it is a bug fix
and is not related to this issue.
Outras informações
https://www.malwarebytes.com/blog/news/2022/10/critical-openssl-fix-due-november-1st-get-ready-to-patch
https://blog.checkpoint.com/2022/10/30/openssl-gives-heads-up-to-critical-vulnerability-disclosure-check-point-alerts-organizations-to-prepare-now/
===
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - Unicamp
Centro de Computacao - CCUEC
GnuPG Public Key: http://www.security.unicamp.br/security.asc [^]
Contato: +55 19 3521-2289 ou INOC-DBA: 1251*830
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://www.listas.unicamp.br/pipermail/security-l/attachments/20221031/069ef021/attachment.html>
Mais detalhes sobre a lista de discussão SECURITY-L