[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Forthcoming OpenSSL Releases
From:       Bob Beck <bbe () chromium ! org>
Date:       2022-10-31 16:34:48
Message-ID: CADkPfriF-FoX0Ywxi8Z8v8LjHkrCW_jXdXNgNuSeh6sNLvkGNA () mail ! gmail ! com
[Download RAW message or body]


On Mon, Oct 31, 2022 at 10:31 AM Bob Beck <beck@obtuse.com> wrote:

>
>
> Begin forwarded message:
>
> *From: *Demi Marie Obenour <demi@invisiblethingslab.com>
> *Subject: **Re: [oss-security] Forthcoming OpenSSL Releases*
> *Date: *October 29, 2022 at 2:19:41 PM MDT
> *To: *oss-security@lists.openwall.com, Roxana Bradescu <
> roxabee@chromium.org>
> *Cc: *libressl-security@openbsd.org
>
> On Sat, Oct 29, 2022 at 08:43:08AM -0400, Bob Beck wrote:
>
> Libressl is not vulnerable to the upcoming issue.
>
>
> Is the same true for BoringSSL?
> --
> Sincerely,
> Demi Marie Obenour (she/her/hers)
> Invisible Things Lab
>
>
BoringSSL is not based on OpenSSL 3.0, so it is not affected.


[prev in list] [next in list] [prev in thread] [next in thread]