USN-704-1: OpenSSL vulnerability Post: 302274498

Sponsored Content

Special Forums Cybersecurity Security Advisories (RSS) USN-704-1: OpenSSL vulnerability Post 302274498 by Linux Bot on Wednesday 7th of January 2009 05:50:06 PM

01-07-2009

Registered User

USN-704-1: OpenSSL vulnerability

Referenced CVEs:
CVE-2008-5077

Description:
===========================================================Ubuntu Security Notice USN-704-1 January 07, 2009openssl vulnerabilityCVE-2008-5077===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 7.10Ubuntu 8.04 LTSUbuntu 8.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: libssl0.9.8 0.9.8a-7ubuntu0.6 openssl 0.9.8a-7ubuntu0.6Ubuntu 7.10: libssl0.9.8 0.9.8e-5ubuntu3.3 openssl 0.9.8e-5ubuntu3.3Ubuntu 8.04 LTS: libssl0.9.8 0.9.8g-4ubuntu3.4 openssl 0.9.8g-4ubuntu3.4Ubuntu 8.10: libssl0.9.8 0.9.8g-10.1ubuntu2.1 openssl 0.9.8g-10.1ubuntu2.1After a standard system upgrade you need to reboot your computer toeffect the necessary changes.Details follow:It was discovered that OpenSSL did not properly perform signature verificationon DSA and ECDSA keys. If user or automated system connected to a maliciousserver or a remote attacker were able to perform a man-in-the-middle attack,this flaw could be exploited to view sensitive information.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

LEARN ABOUT CENTOS

usn-tombstone-cleanup.pl

USN-TOMBSTONE-CLEANUP.PL(8)				      System Manager's Manual				       USN-TOMBSTONE-CLEANUP.PL(8)

NAME

       usn-tombstone-cleanup.pl - Directory Server perl script for cleaning up tombstone entries.

SYNOPSIS

       usn-tombstone-cleanup.pl [-Z serverID] [-D rootdn] { -w password | -w - | -j filename } -s suffix -n backend [-m maxusn_to_delete] [-P pro-
       tocol] [-v] [-h]

DESCRIPTION

       Deletes the tombstone entries maintained by the instance if the USN Plug-in is enabled.

OPTIONS

       A summary of options is included below:

       -Z Server Identifier
	      The server ID of the Directory Server instance.  If there is only one instance on the system, this option can be skipped.

       -D Root DN
	      The Directory Manager DN, or root DN.  If not specified, the script will search the server instance configuration for the value.

       -w password
	      The rootdn password.

       -w -
	      Prompt for the rootdn password.

       -j password filename
	      The name of the file that contains the root DN password.

       -s suffix
	      Gives the name of the suffix containing the entries to clean/delete.

       -n backend
	      Gives the name of the database containing the entries to clean/delete.  Example, userRoot.

       -m maxusn_to_delete
	      Sets the upper bound for entries to delete. All tombstone entries with an entryUSN value up to the specified maximum (inclusive) are
	      deleted, but not past that USN value. If no maximum USN value is set, then all backend tombstone entries are deleted.

       -P protocol
	      The  connection  protocol  to  connect  to the Directory Server.	Protocols are STARTTLS, LDAPS, LDAPI, and LDAP.  If this option is
	      skipped, the most secure protocol that is available is used.  For LDAPI, AUTOBIND is also available for the root user.

       -v
	      Display verbose ouput

       -h
	      Display usage

EXAMPLE

       usn-tombstone-cleanup.pl -Z instance2 -D 'cn=directory manager' -w password -n userRoot -s 'ou=people,dc=example,dc=com' -P STARTTLS

	      Note: security must be enabled to use protocol STARTTLS.	If STARTTLS is not available it will default to  next  strongest/available
	      protocol automatically.

DIAGNOSTICS

       Exit status is zero if no errors occur.	Errors result in a non-zero exit status and a diagnostic message being written to standard error.

AUTHOR

       usn-tombstone-cleanup.pl was written by the 389 Project.

REPORTING BUGS

       Report bugs to http://bugzilla.redhat.com.

COPYRIGHT

       Copyright (C) 2013 Red Hat, Inc.

								    Mar 5, 2013 				       USN-TOMBSTONE-CLEANUP.PL(8)