On 08-03-18 08:57, Hal Murray wrote: > Do you have a pointer to a list of the insecure versions with a summary of > the bug so we can see if we use that feature? https://www.openssl.org/news/vulnerabilities.html ? That is from the source of openssl... We also have https://www.cvedetails.com/vulnerability-list/vendor_id-217/Openssl.html Udo