Hi all, OpenSSL versions 3.4, 3.3, 3.2, 3.1, 3.0, 1.1.1 and 1.0.2 are susceptible to CVE-2024-13176.
As BoringSSL is forked from OpenSSL can you tell me if gRPC, which uses BoringSSL is affected by this vulnerability and if so is there a plan to fix it? Many thanks, Kate -- You received this message because you are subscribed to the Google Groups "grpc.io" group. To unsubscribe from this group and stop receiving emails from it, send an email to grpc-io+unsubscr...@googlegroups.com. To view this discussion visit https://groups.google.com/d/msgid/grpc-io/c6bce913-f6f7-4963-a9e5-b0187afac790n%40googlegroups.com.
