Mastodon Feed
Reblogged by kornel ("Kornel"):
bagder ("daniel:// stenberg://") wrote:
CVE-2024-5535 is an #OpenSSL problem that cannot be triggered by #curl
OpenSSL calls it it a low severity flaw. https://www.openssl.org/news/vulnerabilities.html
GitHub lists it as "critical" at 9.1 out of 10: https://github.com/advisories/GHSA-4fc7-mvrr-wv2c