Liudvikas Bukys

Red Hat Security Advisory: Updated openssl packages available

July 18, 2001, 9:40 pm

Red Hat Security Advisory: Updated openssl packages available

Versions of OpenSSL prior to 0.9.6a suffer from potential security
problems. These include potential leakage of information after SSL
version 3 key exchanges, imperfect distribution of random numbers used
when generating signatures, honoring of sensitive environment variables
in library functions in setuid or setgid applications, and not taking
precautions to counter effects of potential hardware glitches when
generating digital signatures.

A flaw has also been found in the pseudo-random number generator used
in versions of OpenSSL prior to 0.9.6b. The OpenSSL Project Team has
released a patch which corrects this problem.

[Linux Today]

Category: LINKS, security | Comment (RSS) |

Author
- Liudy@Bukys.org
Pages
- Quotations
Categories
- arch (179)
- business (2)
- ESSAYS (27)
- hpc (16)
- humor (6)
- image (1)
- intuitive computing (2)
- LINKS (1,027)
- linux (74)
- misc (177)
- mobile (2)
- network (30)
- new york (1)
- policy and law (86)
- politics (2)
- REVIEWS (3)
- robocall (1)
- rochester (1)
- security (453)
- security examples (34)
- software (34)
- spam (82)
- Uncategorized (1)
- universities (58)
- web (108)
See also:
Archives

Red Hat Security Advisory: Updated openssl packages available

Leave a Reply

Author

Pages

Categories

See also:

Archives