Subject: Apache HTTP Server dependency on OpenSSL
Good day from Singapore,
I read that Apache HTTP Server depends on/requires OpenSSL 1.1.1 to operate
a TLS 1.3 web server.
Can we use OpenSSL 3.0.7 instead of OpenSSL 1.1.1? Is it supported?
OpenSSL versions 3.0.0 through 3.0.6 have CVE-2022-3602 and CVE-2022-3786
security vulnerabilities, so we need to avoid these versions.
Please advise.
Thank you.
Regards,
Mr. Turritopsis Dohrnii Teo En Ming
Targeted Individual in Singapore
Blogs:
https://tdtemcerts.blogspot.com
https://tdtemcerts.wordpress.com
Good day from Singapore,
I read that Apache HTTP Server depends on/requires OpenSSL 1.1.1 to operate
a TLS 1.3 web server.
Can we use OpenSSL 3.0.7 instead of OpenSSL 1.1.1? Is it supported?
OpenSSL versions 3.0.0 through 3.0.6 have CVE-2022-3602 and CVE-2022-3786
security vulnerabilities, so we need to avoid these versions.
Please advise.
Thank you.
Regards,
Mr. Turritopsis Dohrnii Teo En Ming
Targeted Individual in Singapore
Blogs:
https://tdtemcerts.blogspot.com
https://tdtemcerts.wordpress.com