Jerry Benton
2014-04-08 11:22:02 UTC
A critical vulnerability (CVE-2014-0160) has been found in OpenSSL v1.0.1.
The vulnerability can be used to reveal the content of encrypted traffic
and can even expose primary and secondary keys. The fix is addressed in
v1.0.1g and should now be available in most Linux distributions. For more
information:
Debian: http://www.debian.org/security/2014/dsa-2896
Ubuntu:
http://askubuntu.com/questions/444702/how-to-patch-cve-2014-0160-in-openssl
RedHat: https://access.redhat.com/security/cve/CVE-2014-0160
The vulnerability can be used to reveal the content of encrypted traffic
and can even expose primary and secondary keys. The fix is addressed in
v1.0.1g and should now be available in most Linux distributions. For more
information:
Debian: http://www.debian.org/security/2014/dsa-2896
Ubuntu:
http://askubuntu.com/questions/444702/how-to-patch-cve-2014-0160-in-openssl
RedHat: https://access.redhat.com/security/cve/CVE-2014-0160
--
--
Jerry Benton
Mailborder Systems
www.mailborder.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20140408/a9dcb499/attachment.html
--
Jerry Benton
Mailborder Systems
www.mailborder.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20140408/a9dcb499/attachment.html