Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo GLSA-202310-09 Critical: RSA Forgery in Opera Browser

gentoo
Calendar Grey September 28, 2006
Dist Gentoo Esm H88
The Opera web browser on Gentoo systems presents a medium severity vulnerability related to RSA signature forgery. Immediate update needed to address the security concerns.
Opera fails to correctly verify certain signatures.

Summary

Gentoo Linux Security Advisory GLSA 200609-18 https://security.gentoo.org/ Severity: Normal Title: Opera: RSA signature forgery Date: September 28, 2006 Bugs: #147838 ID: 200609-18

Synopsis ======= Opera fails to correctly verify certain signatures.
Background ========= Opera is a multi-platform web browser.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/opera < 9.0.2 >= 9.0.2
========== Opera makes use of OpenSSL, which fails to correctly verify PKCS #1 v1.5 RSA signatures signed by a key with exponent 3. Some CAs in Opera's list of trusted signers are using root certificates with exponent 3.
Impact ===== An attacker could forge certi...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo normal severity opera browser rsa forgery

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo normal severity opera browser rsa forgery

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here