Tony Battersby reported that incorrect cipher key and IV length processing in OpenSSL, a Secure Sockets Layer toolkit, may result in loss of confidentiality for some symmetric cipher modes.
Additional details can be found in the upstream advisory: https://www.openssl.org/news/secadv/20231024.txt
https://security-tracker.debian.org/tracker/DSA-5532-1
Continue reading...
Additional details can be found in the upstream advisory: https://www.openssl.org/news/secadv/20231024.txt
https://security-tracker.debian.org/tracker/DSA-5532-1
Continue reading...