Page tree
Skip to end of metadata
Go to start of metadata
26/05/2014

Referring to the following vulnerability https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160 widely known as “Heartbleed”, we would like to inform you that CAST Products are not affected by it.

The vulnerability is due to a DLL Name “libeay32.dll” used by postgresql for server and client tools like pg_dump/pg_restore/pgAdmin3 when SSL is enabled.

By default, SSL is disabled, so CAST installation is not vulnerable.

For more information see - http://blog.hagander.net/archives/219-PostgreSQL-and-the-OpenSSL-Heartbleed-vulnerability.html

 

 

  • No labels