|
|
OpenSSL FIPS Object Module PRNG Seed Vulnerability
Solution: Changes to FIPS 140-2 validated software require official approval. The Open Source Software Institute (OSSI) has submitted patch information to the FIPS 140-2 test lab; the patches are pending approval. The estimated time to approval is currently unknown. The patches that were submitted and awaiting approval are available. The vendor has issued a fix that is to be considered a temporary mitigation until it receives official approval. Once validated, this fix will become an official patch. Please see the referenced advisories for more information. OpenSSL Project FIPS Object Module 1.1.1
|
|
Privacy Statement |