This repository has been archived by the owner on Mar 16, 2022. It is now read-only.
1.21.0
cf-buildpacks-eng
released this
07 Dec 17:43
·
317 commits
to master
since this release
Notably, this release addresses USN-2830-1 "OpenSSL vulnerabilities" which address:
- CVE-2015-1794 "Anon DH ServerKeyExchange with 0 p parameter"
- CVE-2015-3193 "BN_mod_exp may produce incorrect results on x86_64"
- CVE-2015-3194 "Certificate verify crash with missing PSS parameter"
- CVE-2015-3195 "X509_ATTRIBUTE memory leak"