AVG-144 log

Package lib32-openssl
Status Not affected
Severity High
Type denial of service
Affected 1:1.1.0.a-1
Fixed 1:1.1.0.c-1
Current 1:1.1.1.d-1 [multilib]
Ticket None
Created Sun Jan 15 21:51:55 2017
Issue Severity Remote Type Description
CVE-2016-7054 High Yes Denial of service
TLS connections using *-CHACHA20-POLY1305 ciphersuites are susceptible to a denial of service attack via application crash by corrupting larger payloads.
Notes
This issue does not affect OpenSSL versions prior to 1.1.0