Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-11151

OpenSSL clients and servers are not affected.

    XMLWordPrintable

Details

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      that verify PKCS#7 signatures, decrypt PKCS#7 data or
      otherwise parse PKCS#7 structures from untrusted sources are
      affected. OpenSSL clients and servers are not affected.

      This issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0
      and 0.9.8.

      OpenSSL 1.0.2 users should upgrade to 1.0.2a
      OpenSSL 1.0.1 users should upgrade to 1.0.1m.
      OpenSSL 1.0.0 users should upgrade to 1.0.0r.
      OpenSSL 0.9.8 users should upgrade to 0.9.8zf.

      This issue was reported to OpenSSL on February 16th 2015 by Michal
      Zalewski (Google) and a fix developed by Emilia Käsper of the OpenSSL
      development team.

      Attachments

        Activity

          People

            6995b9ed1710 evzijst
            Anonymous Anonymous
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: