Openssl v.1.1.0d was released as a security update

Description: Multiple security bugs have been fixed in the latest releases of OpenSSL. Changes: fixed carry propagating bug in the x86_64 Montgomery squaring procedure fixed bug with bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash Affected […]

Continue reading ...

OpenSSL: Deny Service and Decrypt TLS Sessions

Description: Multiple vulnerabilities were reported in OpenSSL. A remote user can decrypt TLS sessions in certain cases. A remote user can cause denial of service conditions on the target system. A remote user can decrypt TLS sessions in certain cases by using a server that supports SSLv2 and EXPORT cipher suites as a Bleichenbacher RSA […]

Continue reading ...