You are here
OpenSSL Vulnerability related to OpenSSL Security Advisory 6 March 2019
Submitted on 7. March 2019 - 8:41 by rischi.
Last update on 7. March 2019 - 8:45.
Last update on 7. March 2019 - 8:45.
IDs:
CVE-2019-1543
Keywords:
OpenSSL, ChaCha20-Poly1305
Description:
OpenSSL released a security advisory on March 6, 2019 describing the vulnerability CVE-2019-1543 [1].
Airlock WAF is not affected
Details:
The vulnerability is related to the nonce value (IV) handling in the ChaCha20-Poly1305 cipher suite. Currently supported Airlock WAF versions use OpenSSL version 1.0.2 which is not affected.
Component:
Airlock
Airlock Vulnerability Status:
Does not affect Airlock
Back-end Vulnerability Status:
Does not affect back-end behind Airlock
Reference: