AVG-2315 log
| Package | openssl |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 1.1.1.k-1 |
| Fixed | 1.1.1.l-1 |
| Current | 3.6.0-1 [core] |
| Ticket | None |
| Created | Tue Aug 24 14:07:48 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-3712 | Medium | Yes | Information disclosure | A security issue has been found in OpenSSL before version 1.1.1l. ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which... |
| CVE-2021-3711 | High | Yes | Arbitrary code execution | A security issue has been found in OpenSSL 1.1.1 before version 1.1.1l. In order to decrypt SM2 encrypted data an application is expected to call the API... |