cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

On April 16, between 2:25 P.M. ET and 4:12 P.M. ET, the domain zoom.us was not available due to a server block by GoDaddy Registry. This block was the result of a communication error between Zoom’s domain registrar, Markmonitor, and GoDaddy Registry, which resulted in GoDaddy Registry mistakenly shutting down zoom.us domain. Zoom, Markmonitor, and GoDaddy worked quickly to identify and remove the block, which restored service to the domain zoom.us. There was no product, security or network failure at Zoom during the outage. GoDaddy and Markmonitor are working together to prevent this from happening again.

Open SSL vulnerability - version lower than 3.1.5

PaulB10000
Newcomer
Newcomer

‎2024-02-14 03:06 AM

Hi,

 

The previous thread https://community.zoom.com/t5/Meetings/OpenSSL-Vulnerability-Zoom-Meetings-uses-old-version-3-1-1/m-... has been marked as closed.

 

Please advise if there is an updated Zoom installer version available that includes OpenSSL version 3.1.5 or above?

 

Please would you let us have an eta?

Topics:
4 REPLIES 4

VA
Community Moderator | Employee
Community Moderator | Employee

‎2024-02-23 08:10 AM - edited ‎2024-02-23 08:11 AM

@PaulB10000 The latest Zoom client utilizes security fixes addressed in OpenSSL 3.1.5 and is packaged with version 3.1.4. Since Microsoft Defender only detects OpenSSL 3.1.4 and not our custom fix, it outputs a warning. Once OpenSSL 3.1.5 is available as a stable release, Zoom plans to adopt this version into the Zoom apps and that change will be called out in our official release notes. Many thanks to @Bort for researching this internally.


Virginia
Zoom Community Team
Have you heard of Zoom AI Companion?
0 Likes

BizD3v
Newcomer
Newcomer
In response to VA

‎2024-07-10 11:50 AM

Virginia, thank you for the info--knowing you have a custom patch in place provides some peace of mind. 
And 3.1.5 has been stable for months, 3.1.6 is now stable for over a month. Zoom has done major updates, moving us all to your workplace. But if it continues to be months to years behind (this issue has been around that long, going back in my experience to at least 3.1), I'm going to have to remove Zoom from all our client systems. It simply represents too much custom work for our security folks to constantly make exceptions for your software. 
Is there any plan to actually address this? 

0 Likes

nathian
Newcomer
Newcomer

‎2024-05-07 07:23 AM

Hi @VA Has there been any update on this one?

0 Likes

nathian
Newcomer
Newcomer

‎2024-05-08 11:33 AM

@Bort Please can you give anymore info on the above?

 

Thanks

0 Likes