Reply to post: Two recent CVEs mentioned in the git log

Awoogah – brown alert: OpenSSL preps 'high severity' security fixes

Alan J. Wylie

Two recent CVEs mentioned in the git log

CVE-2016-0799: Fix memory issues in BIO_*printf functions

"These problems could enable attacks where large amounts of untrusted data is passed to the BIO_*printf functions"

CVE-2016-0798: avoid memory leak in SRP

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019