Openssl Vulnerability 2024 Lok. I can see splunk is vulnerable to openssl 1.0.2zk, i've applied the latest 9.2.2 on splunk enterprise and the universal forwarder, still running the older 1.0.2zj. Calling the openssl api function ssl_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents.
The openssl api function ssl_select_next_proto is typically used by tls applications that support alpn (application layer protocol negotiation) or npn (next. Security advisory description the cve record for the cve id does not exist.
Openssl Vulnerability 2024 Lok Images References :