Forums MyID Announcements OpenSSL high severity CVE reports

  • This topic has 0 replies, 1 voice, and was last updated 1 month ago by Iain.
Viewing 1 post (of 1 total)
  • Author
    Posts
  • #4517
    Iain
    Senior Moderator

    We are aware of the recently reported high severity issues in OpenSSL https://www.openssl.org/news/secadv/20221101.txt

    • X.509 Email Address 4-byte Buffer Overflow (CVE-2022-3602)

    • X.509 Email Address Variable Length Buffer Overflow (CVE-2022-3786)

    Initial investigations have shown that MyID does not use the OpenSSL functions affected by this issue. We are continuing to investigate and will update this article if further action is required.

     

Viewing 1 post (of 1 total)
  • The forum ‘MyID Announcements’ is closed to new topics and replies.