rPSA-2007-0155-1 openssl openssl-scripts

rPath Security Advisory: 2007-0155-1
Published: 2007-08-10
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:

    Local System User Non-deterministic Information Exposure Updated Versions:

    openssl=/conary.rpath.com@rpl:devel//1/0.9.7f-10.7-1     openssl-scripts=/conary.rpath.com@rpl:devel//1/0.9.7f-10.7-1

References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3108     https://issues.rpath.com/browse/RPL-1613

Description:

    Previous versions of the openssl package are vulnerable to an     attack in which a local attacker may be able to discover another     user's RSA private key by watching another running process using     that key.

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html Received on Fri Aug 10 12:18:52 2007

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek