Josh's Blog

Entries from Tuesday, May 13. 2008

Tuesday, May 13. 2008

OpenSSL random number generator flaw (CVE-2008-0166)

A flaw was discovered in a third-party vendor patch to the OpenSSL library which affected random number generator seeding (CVE-2008-0166). This patch has never been used by Red Hat, and this issue does not affect any Fedora, Red Hat, or upstream supplied OpenSSL packages.

Any cryptographic keys or encrypted data generated on a system using a distribution which was affected may be predictable and should be replaced. Affected vendors will be publishing advisories and advice on how to do this.
Posted by Josh Bressers in Security at 12:25 | Comments (0) | Trackbacks (0)
(Page 1 of 1, totaling 1 entries)

Calendar

Back May '08 Forward
Sun Mon Tue Wed Thu Fri Sat
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30 31

Quicksearch

Archives

January 2009
December 2008
November 2008
Recent...
Older...

Categories



All categories

Syndicate This Blog

Blog Administration

Open login screen

Powered by

Serendipity PHP Weblog