AVG-2848 log
| Package | openssl |
| Status | Fixed |
| Severity | Medium |
| Type | incorrect calculation |
| Affected | 3.1.3-1 |
| Fixed | 3.1.4-1 |
| Current | 3.6.0-1 [core] |
| Ticket | None |
| Created | Tue Oct 24 15:06:09 2023 |
| Advisory | Pending |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2023-5363 | Medium | Yes | Incorrect calculation | A bug has been identified in OpenSSL <= 3.1.3, in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or... |
| References |
|---|
https://www.openssl.org/news/secadv/20231024.txt |