Bug#539449: openssl: vulnerable to null character : msg#08746 debian-bugs-dist

package: openssl
version: 0.9.8
severity: important
tags: security

it has been disclosed that ssl applications can be tricked via
inauthentic certificates containing null characters [0]. i have not
personally checked whether openssl is affected by this, but since this
is newly disclosed, it is very likely the case. please check and fix
if need be. thanks.

--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

Bug#539447: gimp: GIMP stop my keybord frfom working, Saulo Soares de Toledo

Next by Date:

Bug#507545: Patch for some of the init.d scripts in nslu2-utils, Petter Reinholdtsen

Previous by Thread:

Bug#539447: gimp: GIMP stop my keybord frfom working, Saulo Soares de Toledo

Next by Thread:

Bug#539449: Acknowledgement (openssl: vulnerable to null character certificate spoofing), Michael S Gilbert

Indexes:

[Date] [Thread] [Top] [All Lists]

Bug#539449: openssl: vulnerable to null character certificate spoofing: msg#08746

debian-bugs-dist