OpenSSL Vulnerability

Hi, I have recently found that there’s a vulnerability in version 1.1.1i of OpenSSL, which kong has installed on the alpine-based docker images, and presumably the other docker images as well, although I have not checked. I saw that someone merged in a change a few days ago to master that looked like it would fix the issue. I’m wondering when the next release might be? I want to get those changes in my deployed version to resolve the vulnerability.

Thanks.

looks like 2.3.3 has been released and the issue is resolved. thanks


© 2019 Kong Inc.    Terms  •  Privacy  •  FAQ