CVE-2023-0286 impact on Syslog-NG PE and Syslog-ng Store Box (SSB) (4370893)
CVE-2023-0286 impact on Syslog-NG PE and Syslog-ng Store Box (SSB)
Syslog-NG PE and SSB are not impacted by CVE-2023-0286 as they do not utilize the functionality that is explicitly vulnerable.
Neither Syslog-ng nor SSB has functionality for retrieving CRLs over a network.
The next releases of both products will have newer versions of OpenSSL, including the fix for CVE-2023-0286.
© 2023 One Identity LLC. ALL RIGHTS RESERVED.