OpenSSL bug

Spencer Thomas Spencer.Thomas at ithaka.org
Wed Nov 2 18:16:15 UTC 2022


Ok, same question for the SP?


On 11/2/22, 1:55 PM, "users" <users-bounces at shibboleth.net> wrote:

>>>>>Caution: This message did not originate from within ITHAKA's email system. Please use caution when opening attachments and following links within this message.<<<<<

Hi Peter,

Thanks for the confirmation!


-Gabor




-------- Original Message --------
From: Peter Schober via users [mailto:users at shibboleth.net]
Sent: Wednesday, November 2, 2022 at 5:31 AM EDT
To: users at shibboleth.net
Cc: Peter Schober <peter.schober at univie.ac.at>
Subject: OpenSSL bug

> * Gabor Gabanyi via users <users at shibboleth.net> [2022-11-01 20:05]:
>> Is the IdP affected by this OpenSSL vulnerability?
>
> The IDP is written in Java and does not make use of openssl for
> certificate verification, so no.
> -peter
> --

--
For Consortium Member technical support, see https://shibboleth.atlassian.net/wiki/x/ZYEpPw
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20221102/61e3f8ea/attachment.htm>


More information about the users mailing list