OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 17.1 Legacy Series »
  • CVE-2017-8301
« previous next »
  • Print
Pages: [1]

Author Topic: CVE-2017-8301  (Read 2142 times)

fabian

  • Hero Member
  • *****
  • Posts: 2740
  • Karma: 195
  • OPNsense Contributor (Language, VPN, Proxy, etc.)
    • View Profile
    • Personal Homepage
CVE-2017-8301
« on: May 05, 2017, 07:38:32 pm »
Just if anyone is questioning this:

OPNsense is not affected as CVE-2017-8301 affects 2.5.1 to 2.5.3 and OPNsense uses a 2.4.x version of LibreSSL.

http://seclists.org/oss-sec/2017/q2/145

Please be careful with your other servers out there.

Kind regards

Fabian
Logged

franco

  • Administrator
  • Hero Member
  • *****
  • Posts: 12612
  • Karma: 1078
    • View Profile
Re: CVE-2017-8301
« Reply #1 on: May 05, 2017, 10:18:16 pm »
Strongswan and HAProxy currently fall apart with LibreSSL 2.5. We'll say with 2.4 a while longer, it's still fully supported and will receive updates if necessary.


Cheers,
Franco
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 17.1 Legacy Series »
  • CVE-2017-8301
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2022 All rights reserved
  • SMF 2.0.18 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2