You are here
OpenSSL Vulnerability fixed in version 1.1.0e
Submitted on 23. February 2017 - 13:59 by rischi.
Last update on 10. March 2017 - 17:17.
Last update on 10. March 2017 - 17:17.
IDs:
CVE-2017-3733
Keywords:
OpenSSL
Description:
OpenSSL released version 1.1.0e fixing CVE-2017-3733.
Airlock WAF is not affected.
Details:
The vulnerability can cause OpenSSL to crash. The vulnerable version 1.1.0 is not used by Airlock WAF. OpenSSL 1.0.2 which is used by Airlock WAF 6.0 and 6.1 is not affected. According to our analysis the older OpenSSL version 1.0.1 which is used by Airlock WAF 5.3.1 is not affected as well.
Resolution:
no action required.
Component:
Airlock
Airlock Vulnerability Status:
Does not affect Airlock
Back-end Vulnerability Status:
Does not affect back-end behind Airlock
Reference: