Arch Linux 807 Published by

The following security updates has been released for Arch Linux:

ASA-201906-6: lib32-openssl: information disclosure
ASA-201906-7: openssl: information disclosure
ASA-201906-8: vim: arbitrary code execution
ASA-201906-9: gvim: arbitrary code execution



ASA-201906-6: lib32-openssl: information disclosure

Arch Linux Security Advisory ASA-201906-6
=========================================

Severity: Low
Date : 2019-06-11
CVE-ID : CVE-2019-1543
Package : lib32-openssl
Type : information disclosure
Remote : Yes
Link : https://security.archlinux.org/AVG-920

Summary
=======

The package lib32-openssl before version 1:1.1.1.c-1 is vulnerable to
information disclosure.

Resolution
==========

Upgrade to 1:1.1.1.c-1.

# pacman -Syu "lib32-openssl>=1:1.1.1.c-1"

The problem has been fixed upstream in version 1.1.1.c.

Workaround
==========

None.

Description
===========

An issue has been found in OpenSSL