Gentoo: GLSA-200912-01 Moderate: OpenSSL Remote Injection Threat
gentoo
December 1, 2009
Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct multiple attacks, including the injection of arbitrary data into encrypted byte streams
Summary
Gentoo Linux Security Advisory GLSA 200912-01
https://security.gentoo.org/
Severity: Normal
Title: OpenSSL: Multiple vulnerabilities
Date: December 01, 2009
Bugs: #270305, #280591, #292022
ID: 200912-01
Synopsis
=======
Multiple vulnerabilities in OpenSSL might allow remote attackers to
conduct multiple attacks, including the injection of arbitrary data
into encrypted byte streams.
Background
=========
OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer
(SSL v2/v3) and Transport Layer Security (TLS v1) as well as a general
purpose cryptography library.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-libs/openssl < 0.9.8l-r2 >= 0.9.8l-r2
...
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/4180109_4c9dbbdde36eef04251a4ced7eac4df9 on line 11
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!