July 27, 2022
Categorized: High Severity
Share this post:
OpenSSL is vulnerable to arbitrary command execution due to improper validation of input by c_reshash script as described in the vulnerability details section. IBM i has addressed the vulnerability in OpenSSL with a fix as described in the remediation/fixes section.
Affected product(s) and affected version(s):
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6607559
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/226018