New CVE-2022-1292 occurs

chen_song · May 6, 2022, 10:13am

Hi，
New vulnerabilities have been discovered in openssl recently. Do these vulnerabilities affect our products? Is there a repair plan?

sjlombardo · May 6, 2022, 12:44pm

Hello @chen_song SQLCipher is not affected by CVE-2022-1292.

longchao1201 · June 23, 2022, 7:00am

Hello, recently new CVE-2022-2068 have been discovered in openssl. Do these affect our products?
@sjlombardo

sjlombardo · June 24, 2022, 6:44pm

Hello @longchao1201 - SQLCipher is unaffected by this CVE. It does not directly use c_rehash or include any functionality related to it.