TWSD-484 - BJ-Bug 134165 System Vulnerabilities found in our APV || Requirements for 10.7.x Build Update ||
Review Request #662 — Created Feb. 19, 2025 and updated — Latest diff uploaded
| Information | |
|---|---|
| kevin.poh | |
| APV10 | |
| rel_apv_10_7 | |
| TWSD-484 | |
| Reviewers | |
| timlai, weikai | |
On APV version 10.7.xx, several OpenSSL vulnerabilities were reported as unaddressed. The six identified vulnerabilities are:
1.CVE-2021-3712
2.CVE-2022-1292
3.CVE-2022-4304
4.CVE-2022-4450
5.CVE-2023-0215
6.CVE-2023-0286These were previously fixed in APV version 10.4.xx, with the update available at:
http://192.168.100.11/svn/Ustack/branches/rel_apv_10_4_2
Revision No : 34839In this issue, I have applied the update to version 10.7.xx.