6.10.0-rc4 is currently on OpenSSL 1.1.1m (14 Dec 2021) which has a vulnerability that can leave it open to denial of service attacks.
https://www.openssl.org/news/secadv/20220315.txt
https://github.com/advisories/GHSA-x3mh-jvjw-3xwx
Advice is OpenSSL 1.1.1 users should upgrade to 1.1.1n, which probably missed the last RC upgrade window by a few days.
- 1
Recommended Comments
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.