The OpenSSL Project fixed a High Severity flaw CVE-2017-3733 in release 1.1.0
February 16, 2017 By Pierluigi Paganini
On Thursday the OpenSSL Project has fixed a high severity denial-of-service (DoS) vulnerability in OpenSSL tracked as CVE-2017-3733.
The OpenSSL development team has fixed a high severity denial-of-service (DoS) flaw tracked as CVE-2017-3733. This is the second security update released in just two months, the first one addressed four low and moderate severity flaws in the library.
The flaw was reported by Joe Orton of Red Hat on January 31, it has been described as “Encrypt-Then-Mac renegotiation crash.”
See the whole article at: