CVE-2015-1793: OpenSSL Alternative chains certificate forgery

On July 9th, OpenSSL released a security advisory containing a single item with “high” severity.

This vulnerability was introduced by OpenSSL version 1.0.1n/1.0.1o and 1.0.2b/1.0.2c, which were released on June 11th and 12th respectively.

A10 PSIRT investigated the issue and that code base is not in use thus none of our software is vulnerable to CVE-2015-1793.



July 9, 2015

About A10 PSIRT Team

The A10 SERT Team is A10 Networks' Security Engineering Research Team. READ MORE