It would appear that UTM 9.7 is vulnerable to CVE-2022-0778 as described in https://www.openssl.org/news/secadv/20220315.txt
As I read the alert, it would appear that this has severe impact for all the older OpenSSL releases like are being used on the UTM...
I would very much like to know if this is on Sophos' radar and when a fix is likely to be available. Thanks.
--Larry
This thread was automatically locked due to age.