Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
|
google unix.com
|
|||||||
| Forums | Register | Forum Rules | Links | Albums | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
| Security Advisories (RSS) UNIX and Linux Security Advisories Via RSS News |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| USN-620-1: OpenSSL vulnerabilities | iBot | Security Advisories (RSS) | 0 | 06-26-2008 10:40 AM |
| Ubuntu: openssl-blacklist update | iBot | Security Advisories (RSS) | 0 | 06-19-2008 10:20 AM |
| Ubuntu: openssl-blacklist update | iBot | Security Advisories (RSS) | 0 | 05-21-2008 02:50 PM |
| TA08-137A: Debian/Ubuntu OpenSSL Random Number Generator Vulnerability | iBot | Security Advisories (RSS) | 0 | 05-16-2008 03:50 PM |
| Ubuntu: OpenSSL vulnerability | iBot | Security Advisories (RSS) | 0 | 05-13-2008 02:30 PM |
Powered by 
|
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
06-26-2008
|
|||||
|
|||||
|
Ubuntu: OpenSSL vulnerabilities
LinuxSecurity.com: It was discovered that OpenSSL was vulnerable to a double-free when using TLS server extensions. A remote attacker could send a crafted packet and cause a denial of service via application crash in applications linked against OpenSSL. Ubuntu 8.04 LTS does not compile TLS server extensions by default. (CVE-2008-0891) It was discovered that OpenSSL could dereference a NULL pointer. If a user or automated system were tricked into connecting to a malicious server with particular cipher suites, a remote attacker could cause a denial of service via application crash. (CVE-2008-1672)
More... |
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Threaded Mode
