• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

FreeBSD-SA-17:11.openssl

Status
Not open for further replies.

admin

Administrator
Staff member
Administrator

Thanks: 196
Messages: 923

#1
If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer overread.[CVE-2017-3735]

There is a carry propagating bug in the x86_64 Montgomery squaring procedure. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen. [CVE-2017-3736] This bug only affects FreeBSD 11.x.
Continue reading...
 
Status
Not open for further replies.