Ops One AG

You can subscribe via RSS

Tuesday 3rd April 2018

Managed Server Version 4 and 5: openssl update, scheduled 2 years ago

It was discovered that constructed ASN.1 types with a recursive definition could exceed the stack, potentially leading to a denial of service.

openssl was updated to the latest version.

  • openssl/oldstable 1.0.1t-1+deb8u8 amd64 [upgradable from: 1.0.1t-1+deb8u7]
  • openssl/oldstable 1.0.1t-1+deb7u4 amd64 [upgradable from: 1.0.1t-1+deb7u3]