octave-bug-tracker
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Octave-bug-tracker] [bug #63876] OpenSSL vulnerability

From: anonymous
Subject: [Octave-bug-tracker] [bug #63876] OpenSSL vulnerability
Date: Tue, 7 Mar 2023 07:30:42 -0500 (EST) 
URL:
  <https://savannah.gnu.org/bugs/?63876>

                 Summary: OpenSSL vulnerability
                   Group: GNU Octave
               Submitter: None
               Submitted: Tue 07 Mar 2023 12:30:39 PM UTC
                Category: None
                Severity: 3 - Normal
                Priority: 5 - Normal
              Item Group: None
                  Status: None
             Assigned to: None
         Originator Name: C Hay
        Originator Email: craig@craftprospect.com
             Open/Closed: Open
                 Release: 7.3.0
         Discussion Lock: Any
        Operating System: Microsoft Windows
           Fixed Release: None
         Planned Release: None


    _______________________________________________________

Follow-up Comments:


-------------------------------------------------------
Date: Tue 07 Mar 2023 12:30:39 PM UTC By: Anonymous
The version of OpenSSL used with Octave 7.3.0 contains a critical
vulnerability (Security Vulnerability CVE-2021-3711 for OpenSSL).

Can the version of OpenSSL bundled with Octave be updated in a future release?
(Fixed in OpenSSL 1.1.1l Affected since 1.1.1)
From: https://www.openssl.org/news/vulnerabilities.html

This has only been tested in the Windows install.







    _______________________________________________________

Reply to this item at:

  <https://savannah.gnu.org/bugs/?63876>

_______________________________________________
Message sent via Savannah
https://savannah.gnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]