Dell BSAFE™ SSL-J 6.5.1 Release Advisory

Initially published on July 10, 2023

Announcement

The Dell BSAFE Product Team announces the general availability of Dell BSAFE SSL-J 6.5.1. This release includes Dell BSAFE Crypto-J 6.2.6.2 with Crypto-J JSAFE and JCE Software FIPS 140-2 Module version 6.2.5.

This release addresses a medium security vulnerability. Details about this vulnerability are available in Dell Security Advisory DSA-2023-156: Dell BSAFE 7.1.1 and SSL-J 6.5.1 Security Update

In this release, the default cipher suite list has been updated to remove cipher suites using AES-CBC for encryption or DHE for key agreement.

This release also adds support for the following JVM property:

• jdk.tls.namedGroups

 This release also addresses the following items:

• Better handling of TLS handshakes when using non-FIPS approved algorithms
• Deprecation of SSLSession.getPeerCertificateChain()
• Minor bugfixes

For additional documentation, downloads, and more, contact Dell Customer Support

---

July 19, 2023 update: DSA title updated.