Initially published on July 2, 2024
Announcement
The Dell BSAFE Product Team announces the general availability of Dell BSAFE SSL-J 6.6. This release includes Dell BSAFE Crypto-J 6.3 with
BSAFE Java Crypto Module 6.3 FIPS 140-2 provider.
This release addresses two medium security vulnerabilities. Details about these vulnerabilities are available in Dell Security Advisory
DSA-2024-221: Security Update for Dell BSAFE™ SSL-J Multiple Vulnerabilities.
This release includes the following relevant changes:
- Fixes for security vulnerabilities
- Security improvements through:
- Enhanced PKIX support: better and stricter conformance with RFC 9525 - Service Identity in TLS.
- Improved endpoint identification.
- SHA-1 signature schemes are now disabled by default.
- Use of BSAFE Crypto-J 6.3 for FIPS 140-2 support.
For more information about these properties, refer to the BSAFE SSL-J Developers Guide.
For additional documentation, downloads, and more, see
How To Request a Dell BSAFE product download