IT security, vunerabilities, bugs, fixes, flaws, RSA conference and Infosec.
 vnunet.com
August 2008
Sun Mon Tue Wed Thu Fri Sat
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31            
Other blogs
PCW Inter@ctive
Your views, your comments, your say

Silicon Valley Sleuth
An insiders view from the valley.

The test bed
The hottest products, news and gossip from PCW's Labs.

IT Sneak
IT Sneak Blog rummages in the dustbin of IT events.

Backbytes
An irreverent and offbeat look at the lighter side of technology

InterActive Home
Your complete guide to home entertainment technology

Taking Stock
Gags and Gossip from Accountancy Age.

Gizmodo
The gadgets weblog.

Powered by Movable Type

« Cyber bullying a common problem | Main | New botnet appears »

Security experts confirm Linux vulnerability

Security experts have confirmed a suspected vulnerability in the Debian and Ubuntu Linux operating systems.

Application vulnerability specialist Fortify Software confirmed the findings of a research posting to the Debian security list last week, which details a critical security vulnerability in the OpenSSL packages within Debian and Ubuntu.

Fredrick Lee, a researcher with Fortify, said that the posting actually understates the potential seriousness of the flaw, which affects the Open Secure Sockets Layer.

"We're calling this vulnerability `insecure randomness' since it allows an attacker to predict the SSL cryptographic keys used for supposedly secure online transactions," he said.

May 20, 2008 |

Comments

Post a comment







Site credentials: About | Privacy policy | Terms & conditions | Top of the page
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503