[Epel-packagers-sig] [Bug 2223821] New: TRIAGE-CVE-2023-2975 openssl3: openSSL: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries [epel-8]

Tuesday, 18 July 2023

https://bugzilla.redhat.com/show_bug.cgi?id=2223821

            Bug ID: 2223821
           Summary: TRIAGE-CVE-2023-2975 openssl3: openSSL: AES-SIV cipher
                    implementation contains a bug that causes it to ignore
                    empty associated data entries [epel-8]
           Product: Fedora EPEL
           Version: epel8
            Status: NEW
         Component: openssl3
          Keywords: Security, SecurityTracking
          Severity: low
          Priority: low
          Assignee: michel(a)michel-slm.name
          Reporter: saroy(a)redhat.com
                CC: epel-packagers-sig(a)lists.fedoraproject.org,
                    michel(a)michel-slm.name
  Target Milestone: ---
    Classification: Fedora

More information about this security flaw is available in the following bug:

http://bugzilla.redhat.com/show_bug.cgi?id=2223016

Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2223821

Report this comment as SPAM:
https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=rep...

2024

2023

2022

2021

[Epel-packagers-sig] [Bug 2223821] New: TRIAGE-CVE-2023-2975 openssl3: openSSL: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries [epel-8]