From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Wed, 08 Feb 2023 10:38:49 +0100 Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1pPguh-000QTS-2p for lore@lore.pengutronix.de; Wed, 08 Feb 2023 10:38:49 +0100 Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de) by metis.ext.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1pPgue-00036B-TN; Wed, 08 Feb 2023 10:38:48 +0100 Received: from h2.cmg2.smtp.forpsi.com ([81.2.195.189]) by metis.ext.pengutronix.de with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pPguB-000362-Cd for ptxdist@pengutronix.de; Wed, 08 Feb 2023 10:38:19 +0100 Received: from lenoch ([91.218.190.200]) by cmgsmtp with ESMTPSA id Pgu8p72z9v5uIPgu9pOMzg; Wed, 08 Feb 2023 10:38:17 +0100 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=triops.cz; s=f2019; t=1675849097; bh=XmjMbIZraEx5lmCBJi7CZa6P6FAWxEXW64UH2tT0LIE=; h=Date:From:To:Subject:Message-ID:MIME-Version:Content-Type; b=0w8+shapTqf/674qWEf0lw4OoP1zgLkNBQTaHqSxxWdIohZmNGXF+yMzy8OKIg7h3 oIEjMHoZBF2IIuX0tlVrI5cMsDV1+zZNzfaFz3c+ngOXbTv1UzYTRyrXnNrkVSN4f1 hnGoywt7NTKH2EKWnfgpqa60AA8nOHiT9HvYhMXiAkBe2QFsGrdQ7bDAI4cOQ/vPtU yA9gdEuC8yg4tVXaRvG0JV9sBTLJeXMW3UDrny/UEZtkDH/YVwaac98XepZVdXlm77 lhN8YJwg4/XlhuawupxCteMCQs9jVOn06wocNlxqFbficcRN9Su2e77Bz+X7g5rlQh 8CAAlhlk/lqkQ== Date: Wed, 8 Feb 2023 10:38:16 +0100 From: Ladislav Michl To: ptxdist@pengutronix.de Message-ID: References: <20230208080107.2504460-1-christian.melki@t2data.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20230208080107.2504460-1-christian.melki@t2data.com> X-CMAE-Envelope: MS4wfAKBjnwME5FhJCsu7vyev/nSRzob75kmBfAvPE254kqiIUQ0cqYpnW/1rB2QfaYRWBQjUu10GS2STMBmi8BMc1Pw8g/SpKmN6OMOLUQm2PDW/a3cZeF2 05gAYdVTwYxVi5/2MZSdytGAuXbloIeQDEcgsSfGe2lJgOEB0/CWRokt X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on metis.ext.pengutronix.de X-Spam-Level: X-Spam-Status: No, score=-2.2 required=4.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE, SPF_NONE autolearn=ham autolearn_force=no version=3.4.2 Subject: Re: [ptxdist] [PATCH] openssl: Version bump. 1.1.1t -> 1.1.1s. X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false Hi Christian! On Wed, Feb 08, 2023 at 09:01:07AM +0100, Christian Melki wrote: > Plug 4 CVEs. > https://www.openssl.org/news/cl111.txt > X.400 address type confusion in X.509 GeneralName (CVE-2023-0286) > Use-after-free following BIO_new_NDEF (CVE-2023-0215) > Double free after calling PEM_read_bio_ex (CVE-2022-4450) > Timing Oracle in RSA Decryption (CVE-2022-4304) seems bump text is reverted, should be 1.1.1s -> 1.1.1t... l.