AVG-478

Package lib32-openssl
Status Fixed
Severity Medium
Type multiple issues
Affected 1:1.1.0.f-1
Fixed 1:1.1.0.g-1
Current 1:1.1.1.a-1 [multilib]
Ticket None
Created Thu Nov 2 15:58:38 2017
Issue Severity Remote Type Description
CVE-2017-3736 Medium Yes Information disclosure
A carry propagation bug has been found in OpenSSL < 1.1.0g in the x86_64 Montgomery squaring procedure. No EC algorithms are affected. Analysis suggests...
CVE-2017-3735 Low Yes Denial of service
A security issue has been found in OpenSSL < 1.1.0g. If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer...
Date Advisory Package Description
08 Nov 2017 ASA-201711-15 lib32-openssl multiple issues