Branch: refs/heads/2.2.0
Home:
https://github.com/Checkmk/checkmk
Commit: a8421fe86b1858231fdcf6c4ab37897b1512b854
https://github.com/Checkmk/checkmk/commit/a8421fe86b1858231fdcf6c4ab37897b1…
Author: Maximilian Wirtz <maximilian.wirtz(a)checkmk.com>
Date: 2023-05-25 (Thu, 25 May 2023)
Changed paths:
A .werks/15687
M buildscripts/infrastructure/build-nodes/scripts/install-openssl.sh
M buildscripts/infrastructure/build-nodes/scripts/install-python.sh
M omd/packages/openssl/openssl.make
M omd/packages/openssl/openssl_http.bzl
Log Message:
-----------
15687 SEC Update openssl to 1.1.1t
With this Werk openssl is updated from 1.1.1q to 1.1.1t.
This fixes several CVEs:
LI: CVE-2023-0215
LI: CVE-2023-0286
LI: CVE-2023-0464
LI: CVE-2023-0465
LI: CVE-2023-0466
LI: CVE-2022-4304
LI: CVE-2022-4450
To our knowledge none of these vulnerabilities is exploitable in Checkmk.
We rate this with a CVSS of 0 (None) (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N). This
CVSS is primarily meant to please automatic scanners.
Change-Id: I733e0798a326ba93fe17a4b848e2b9dff935318c