Openssl Vulnerability 2024. Openssl versions 3.3, 3.2, 3.1 and 3.0 are susceptible to a vulnerability which when successfully exploited. Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by alpine.

Aug 29, 2024 updated date: Calling the openssl api function ssl_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents.