2022-03-17, Version 16.14.2 'Gallium' (LTS), @richardlau
v16.14.2
richardlau
Richard Lau
This tag was signed with the committer’s verified signature.
richardlau
Richard Lau
442e84a
This commit was signed with the committer’s verified signature.
richardlau
Richard Lau
This is a security release.
Notable Changes
Update to OpenSSL 1.1.1n, which addresses the following vulnerability:
- Infinite loop in
BN_mod_sqrt()reachable when parsing certificates (High)(CVE-2022-0778)
More details are available at https://www.openssl.org/news/secadv/20220315.txt
Commits
- [
3924618c74] - deps: update archs files for OpenSSL-1.1.1 (Hassaan Pasha) #42352 - [
7a6a870d58] - deps: upgrade openssl sources to OpenSSL_1_1_1n (Hassaan Pasha) #42352 - [
c533b430f4] - test: fix tests affected by OpenSSL update (Michael Dawson) #42352