New CVE-2022-1292 occurs

chen_song · May 6, 2022, 10:13am

Hi，
New vulnerabilities have been discovered in openssl recently. Do these vulnerabilities affect our products? Is there a repair plan?

sjlombardo · May 6, 2022, 12:44pm

Hello @chen_song SQLCipher is not affected by CVE-2022-1292.

longchao1201 · June 23, 2022, 7:00am

Hello, recently new CVE-2022-2068 have been discovered in openssl. Do these affect our products?
@sjlombardo

sjlombardo · June 24, 2022, 6:44pm

Hello @longchao1201 - SQLCipher is unaffected by this CVE. It does not directly use c_rehash or include any functionality related to it.

Topic		Replies	Views
New CVE-2022-2068 occurs SQLCipher	2	486	June 27, 2022
New CVE-2022-4304, CVE-2022-4450,CVE-2022-0215,CVE-2022-0286, is sqlcipher effected? SQLCipher	5	631	March 10, 2023
Cve-2021-3711& cve-2021-3712 SQLCipher	2	481	November 1, 2021
New vulnerability CVE-2024-0727 in OpenSSL version 1.1.1q SQLCipher	1	275	February 7, 2024
New vulnerabilities CVE-2023-0465 and CVE-2023-0466 in openssl SQLCipher	1	475	May 2, 2023