AVG-920

Package lib32-openssl
Status Fixed
Severity Low
Type information disclosure
Affected 1:1.1.1.b-1
Fixed 1:1.1.1.c-1
Current 1:1.1.1.c-1 [multilib]
Ticket None
Created Wed Mar 6 15:37:02 2019
Issue Severity Remote Type Description
CVE-2019-1543 Low Yes Information disclosure
An issue has been found in OpenSSL <= 1.1.1b, where an application using ChaCha20-Poly1305 could set a non-default nonce length to be longer than 12 bytes...
Date Advisory Package Description
11 Jun 2019 ASA-201906-6 lib32-openssl information disclosure
References
https://www.openssl.org/news/secadv/20190306.txt