AVG-32 log

Package lib32-openssl
Status Not affected
Severity Critical
Type arbitrary code execution
Affected 1:1.1.0a-1
Fixed Not affected
Current 1:1.1.1.d-1 [multilib]
Ticket None
Created Mon Sep 26 11:15:50 2016
Issue Severity Remote Type Description
CVE-2016-6309 Critical Yes Arbitrary code execution
The patch applied to address CVE-2016-6307 resulted in an issue where if a message larger than approx 16k is received then the underlying buffer to store...
References
https://www.openssl.org/news/secadv/20160926.txt
Notes
This issue only affects OpenSSL 1.1.0a