Re: [Ejbca-develop] [EJBCA]EJBCA and openSSL

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

No there is no impact in EJBCA per se. EJBCA does not use, or link with, 
OpenSSL in any way. JBoss, as EJBCA is running on does not either, by 
default, use OpenSSL.

If you have custom components or linkage in your environment, outside if 
EJBCA control, you need to be in control of that yourself of course.

Cheers,
Tomas
**********
PrimeKey Solutions AB
Anderstorpsvägen 16, 171 54 Solna, Sweden
Mob: +46 (0)707421096
Internet: www.primekey.se
Twitter: twitter.com/primetomas
**********

On 2014-04-09 12:56, Brahim zaki wrote:
>
> Hi Tomas,
> Is there any impact in EJBCA linked to the openSSL bug :
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160
>
> is EJBCA use openSSL as an embedded lib???
> Thanks.
> ZAKI.