Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
cyberplace.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Cybersecurity, fandom, video games, technology, dog photos and most importantly, you.

Administered by:

Server stats:

939
active users

cyberplace.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

Kevin Beaumont

There’s a high severity flaw in OpenSSL - CVE-2024-12797

- it only applies to OpenSSL 3.2 or above, which in enterprises won’t be most things

- the feature in question isn’t enabled by default

- it’s potential attacker in the middle traffic inspection, not RCE

- clients can still spot the issue if well coded

So, for vast majority of orgs it will not be a drop everything to patch situation

openssl-library.org/news/secad

Feb 11, 2025, 05:13 PM·Public
62boosts·69favorites
ExploreLive feeds
About