[Openssl]incorrect CVE mentioned in openssl changelog

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



Dear team
      in latest openssl openssl-1.0.2k-25.el7_9.x86_64 , looks like there
is an issue with change logs .
      rpm -qi --changelog openssl-1.0.2k-25.el7_9.x86_64 shows me
 "
 * Wed Mar 23 2022 Dmitry Belyavskiy <dbelyavs@xxxxxxxxxx> - 1:1.0.2k-25
- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing
certificates
- Related: rhbz#2067160
"
The CVE number should be CVE-2022-0778 . Right ?
reference : https://bugzilla.redhat.com/show_bug.cgi?id=2062202

Thanks and regards
Akshar
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos



[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]


  Powered by Linux