content top

OpenSSL Security Advisory

OpenSSL Security Advisory

OpenSSL has released a Security Advisory and released an update that will patch nine vulnerabilities.  These include issues that would allow an attacker to cause a Denial of Service (DoS) or force the client to revert to a less secure Transport Layer Security (TLS) 1.0 Protocol.  The following updates are available from OpenSSL:    OpenSSL 0.9.8 users should upgrade to 0.9.8zb    OpenSSL 1.0.0 users should upgrade to 1.0.0n    OpenSSL...

Read More

OpenSSL Security Advisory

OpenSSL Security Advisory

The OpenSSL team has issued a security advisory on June 05, 2014 identifying seven vulnerabilities.  Out of those seven the key one to look into is the SSL/TLS MITM vulnerability (CVE-2014-0224). The OpenSSL team state, “An attacker using a carefully crafted handshake can force the use of weak keying material in OpenSSL/TLS clients and servers.  This can be exploited by a Man-in-the-middle (MITM) attack where the attacker can decrypt...

Read More
content top