Hi, is there any information about whether the Serf usage of OpenSSL is vulnerable to CVE-2017-3738, CVE-2017-3737? I was told that serf wouldn't allow this type of connection, but was unable to find any proof in the code. I would appreciate any hint on this.
Best regards
