New CVE-2022-1292 occurs

New vulnerabilities have been discovered in openssl recently. Do these vulnerabilities affect our products? Is there a repair plan?

Hello @chen_song SQLCipher is not affected by CVE-2022-1292.

Hello, recently new CVE-2022-2068 have been discovered in openssl. Do these affect our products?

Hello @longchao1201 - SQLCipher is unaffected by this CVE. It does not directly use c_rehash or include any functionality related to it.

1 Like