serf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stefan Beck <>
Subject OpenSSL CVE-2017-3738, CVE-2017-3737
Date Tue, 06 Feb 2018 16:33:04 GMT

is there any information about whether the Serf usage of OpenSSL is vulnerable to CVE-2017-3738,
CVE-2017-3737? I was told that serf wouldn't allow this type of connection, but was unable
to find any proof in the code. I would appreciate any hint on this.

Best regards

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message