This repository has been archived by the owner on Mar 16, 2022. It is now read-only.

1.21.0

cf-buildpacks-eng released this 07 Dec 17:43

· 317 commits to master since this release

Notably, this release addresses USN-2830-1 "OpenSSL vulnerabilities" which address:

CVE-2015-1794 "Anon DH ServerKeyExchange with 0 p parameter"
CVE-2015-3193 "BN_mod_exp may produce incorrect results on x86_64"
CVE-2015-3194 "Certificate verify crash with missing PSS parameter"
CVE-2015-3195 "X509_ATTRIBUTE memory leak"

Assets 3