WingNews logo WingNews
top | item 31893130

(no title)

rurcliped | 3 years ago

The post says "the vulnerability has only existed for a week." Many Linux systems don't yet have a 3.0.4 package available, but apparently Homebrew is already installing the affected version:

https://formulae.brew.sh/formula/openssl@3 https://docs.brew.sh/FAQ#why-does-brew-upgrade-formula-or-br...

discuss

order

Joker_vD|3 years ago

And on the other hand, "many Linux systems" (hello, all the containers with Ubuntu 16.04 as a base image!) continue to use 1.0.2g to this day. In practice, the main reason why these things get forcefully updated is because they stop working with the newly minted HTTPS keys/certs.