[Openssl]incorrect CVE Mentioned In Openssl Changelog
Dear team
in latest openssl openssl-1.0.2k-25.el7_9.x86_64 , looks like there is an issue with change logs .
rpm -qi –changelog openssl-1.0.2k-25.el7_9.x86_64 shows me
”
* Wed Mar 23 2022 Dmitry Belyavskiy
– Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
– Related: rhbz#2067160
”
The CVE number should be CVE-2022-0778 . Right ?
reference : https://bugzilla.redhat.com/show_bug.cgi?id 62202
Thanks and regards Akshar
Recent Comments