Our security team alerted us to a known issue with OpenSSL (libssl-1_1-x64.dll)
https://nvd.nist.gov/vuln/detail/CVE-2022-0778
I installed the latest 12.7.21 build, however that build has the same 1.1.1.12 dll as my production machines which are on older sqlbackupandftp builds.
Is there a workaround or patch for this?
Is there a 12.7.21+ build that will fix this issue with OpenSSL?
Hello Zach_Lee,
To resolve the issue, please try specifying the path to your bin folder during the connection settings.
If you have any other questions, please let us know.
Thank you for using SQLBackupAndFTP, and sorry for the inconvenience.
On our servers that are only connecting to MS SQL instances, is it safe to delete the dll from MySql and PostgreSql folders?
Hello Zach_Lee,
Yes, you can delete these files if you only use MS SQL.
Please let us know if you have any other questions.
Thank you for using SQLBackupAndFTP.
