OpenSSL patches for the fourth time in 2017 its library, and it will likely be the last one

OpenSSL patches for the fourth time in 2017 its library, and it will likely be the last one  The OpenSSL Project released the OpenSSL 1.0.2n version that addresses two vulnerabilities discovered by the Google researcher David Benjamin. Benjamin discovered the vulnerabilities using the OSS-Fuzz fuzzing service. The first “moderate severity” issue, tracked as CVE-2017-3737, is related to an “error state” mechanism implemented since OpenSSL 1.0.2b. “OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an “error state” […] The post OpenSSL patches for the fourth time in 2017 its library, and it will likely be the last one  appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2017/12/08/openssl-patches-for-the-fourth-time-in-2017-its-library-and-it-will-likely-be-the-last-one/