docs/advisories/2022-07-05.md - boringssl.git - Git at Google

 # OpenSSL Advisory: July 5th, 2022 (BoringSSL Not Affected)

 OpenSSL have published a [security advisory](https://www.openssl.org/news/secadv/20220705.txt). Here's how it affects BoringSSL:

 CVE | Summary | [Severity] in OpenSSL | Impact to BoringSSL
 ----|---------|-----------------------|---------------------
 CVE-2022-2274 | Heap memory corruption with RSA private key operation | High | Not affected. Bug was introduced after fork.
 CVE-2022-2097 | AES OCB fails to encrypt some bytes | Moderate | Not affected. BoringSSL does not support OCB.

 [Severity]: https://openssl-library.org/policies/general/security-policy/index.html#issue-severity
	# OpenSSL Advisory: July 5th, 2022 (BoringSSL Not Affected)

	OpenSSL have published a [security advisory](https://www.openssl.org/news/secadv/20220705.txt). Here's how it affects BoringSSL:

	CVE \| Summary \| [Severity] in OpenSSL \| Impact to BoringSSL
	----\|---------\|-----------------------\|---------------------
	CVE-2022-2274 \| Heap memory corruption with RSA private key operation \| High \| Not affected. Bug was introduced after fork.
	CVE-2022-2097 \| AES OCB fails to encrypt some bytes \| Moderate \| Not affected. BoringSSL does not support OCB.

	[Severity]: https://openssl-library.org/policies/general/security-policy/index.html#issue-severity