Cve-2021-3711& cve-2021-3712

New vulnerabilities have been discovered in openssl recently. Do these vulnerabilities affect our products? Is there a repair plan?

Hello @GreatAnn0827 - SQLCipher is not affected by either CVE. However, we will be updating to the latest available OpenSSL in the next release.

The latest OpenSSL version 1.1.1l is used in SQLCipher 4.5.0.