Apply OpenSSL CVE fixes for OpenSSL 1.1.1

Question

cthorn42 opened this issue a month ago · comments

OpenSSL just announced a few patches to OpenSSL 1.1.1:
https://www.openssl.org/news/vulnerabilities-1.1.1.html
Those patches fix the following vulnerabilities: CVE-2024-4741 and CVE-2024-2511
We should update agent-runtime to include the above fixes.

github-actions · Answer 1 · Thu Jun 06 2024 02:00:31 GMT+0800 (China Standard Time)

Migrated issue to PUP-12049

Josh Cooper · Answer 2 · Fri Jun 28 2024 09:25:33 GMT+0800 (China Standard Time)