Initially published on August 13, 2021.
Description
The new release addresses five security issues, including one Critical issue.
Refer to the Dell BSAFE Micro Edition Suite 4.5.2 Release Notes for details about the vulnerabilities being addressed.
Public disclosure of the vulnerabilities will occur at the end of the applicable embargo period. Until that embargo ends, only customers with active BSAFE maintenance contracts can receive details about the vulnerabilities. BSAFE customers must treat the details of the security issues addressed as confidential information, and not disclose any of those details until the public disclosure is released. This includes, but is not limited to, CVE IDs, CVSS scores and CWE descriptions..
This release is also designed to include the following fixes:
- Memory leak when calling R_CR_generate_key_init() before every call to R_CR_generate_key()
- Error decoding PKCS #8-encoded EC Private Key (RFC 5915) with optional parameters.
For BSAFE documentation, downloads and more, contact
Dell Support.