Home page logo

fulldisclosure logo Full Disclosure mailing list archives

rPSA-2010-0039-1 openssl openssl-scripts
From: rPath Update Announcements <announce-noreply () rpath com>
Date: Sun, 23 May 2010 18:50:27 -0400

rPath Security Advisory: 2010-0039-1
Published: 2010-05-23
    rPath Appliance Platform Linux Service 1
    rPath Appliance Platform Linux Service 2
    rPath Linux 1
    rPath Linux 2

Rating: Minor
Exposure Level Classification:
    Remote User Deterministic Weakness
Updated Versions:
    openssl=conary.rpath.com () rpl:1/0.9.7f-10.19-1
    openssl=conary.rpath.com () rpl:2/0.9.8g-7.5-2
    openssl-scripts=conary.rpath.com () rpl:2/0.9.8g-7.5-2

rPath Issue Tracking System:


    A flaw in previous versions of OpenSSL could allow a malicious
    client to force a ciphersuite not supported by the server to be 
    used for a session between the client and the server, which can
    result in disclosure of sensitive information.  This has been


Copyright 2010 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • rPSA-2010-0039-1 openssl openssl-scripts rPath Update Announcements (May 24)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]