CLD-451 Details

Other IDs this deficiency may be known by:

CVE ID CVE-2018-0732 (nvd) (mitre) (debian) (archlinux) (red hat) (suse) (ubuntu)
Other ID(s)

Basic Information:

Affected Package(s) openssl
Deficiency Type SECURITY
Date Created 2018-07-05 09:37:47
Date Last Modified 2018-07-06 10:03:36

Version Specific Information:

Cucumber 1.0 i686 waiting for upstream to publish patch
Cucumber 1.0 x86_64 waiting for upstream to publish patch

Cucumber 1.1 i686 waiting for upstream to publish patch
Cucumber 1.1 x86_64 waiting for upstream to publish patch

Details:

See https://www.openssl.org/news/secadv/20180612.txt

The OpenSSL developers have declared this issue to be "low severity," so we will
not be receiving a patch release until they make their next routine release.

LibreSSL on the other hand fixed this vulnerability on June 13, one day after it
went public, in LibreSSL version 2.7.4.