OpenSDE
/
package-nopast
3
0
Fork 0
Code Issues 9 Projects 1 Releases Activity
Browse Source

openssl: Updated (0.9.8n -> 0.9.8o) SECURITY! CVE-2010-1633 

[IMPORTANT]

An invalid Return value check in pkey_rsa_verifyrecover was discovered. When
verification recovery fails for RSA keys an uninitialised buffer with an
undefined length is returned instead of an error code. This could lead to an
information leak.

original advisory: http://www.openssl.org/news/secadv_20100601.txt
CVE-2010-1633: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1633
user/amery/mess
Christian Wiese 14 years ago
committed by Christian Wiese
parent
fd30227eb9
commit
b347aefe83
1 changed files with 2 additions and 2 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +2
    -2
      security/openssl/openssl.desc

+ 2
- 2
security/openssl/openssl.desc
View File

@ -35,7 +35,7 @@
[L] OpenSource [L] OpenSource
[S] Stable [S] Stable
[V] 0.9.8n
[V] 0.9.8o
[P] X -?---5---9 104.600 [P] X -?---5---9 104.600
[D] 4230078551 openssl-0.9.8n.tar.gz http://openssl.org/source/
[D] 3867795964 openssl-0.9.8o.tar.gz http://openssl.org/source/

Write Preview
Loading…
Cancel
Save