OpenSSL Vulnerability with SCM 14.5 on Linux
search cancel

OpenSSL Vulnerability with SCM 14.5 on Linux

book

Article ID: 377830

calendar_today

Updated On:

Products

CA Harvest Software Change Manager CA Harvest Software Change Manager - OpenMake Meister

Issue/Introduction

The version of libssl.so that comes with SCM v14.5 is libssl.so.3 containing OpenSSL v3.0.8.  Vulnerability scans identified this as a problem, requiring that the OpenSSL version be v3.0.15 or greater.

Environment

Harvest Software Change Manager v14.5

Resolution

The upcoming cumulative update 14.5.1 will include a newer version of OpenSSL which will meet the requirement and eliminate the vulnerability report for this item.