Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 448
Alerts This Week
Warning Icon 1 448

Debian Urgent Security Advisory: Openssl Predictable RNG Risk

General Esm H446
Luciano Bello discovered that the random number generator in Debian's openssl package is predictable. This is caused by an incorrect Debian-specific change to the openssl package (CVE-2008-0166). As a result, cryptographic key material may be guessable.

For anyone using Debian-based systems, please read on for further information on this important matter. 'Predictable' is one word you never want to use to describe OpenSSL.

The link for this article located at lists.debian.org is no longer available.