OpenSSL patches vulnerabilities discovered with Google OSS-Fuzz fuzzing service

OpenSSL patches vulnerabilities discovered with Google OSS-Fuzz fuzzing service OpenSSL patches two low and medium severity vulnerabilities that were discovered by using Google’s open source OSS-Fuzz fuzzing service. The medium severity vulnerability tracked as CVE-2017-3736 was addressed with the release of OpenSSL 1.1.0g and 1.0.2m. The flaw is a carry propagating bug in the x86_64 Montgomery squaring procedure, it affects processors that support BMI1, BMI2 and […] The post OpenSSL patches vulnerabilities discovered with Google OSS-Fuzz fuzzing service appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2017/11/03/openssl-patches-vulnerabilities-discovered-with-google-oss-fuzz-fuzzing-service/