146421 – OpenSSL 0.9.8c and 0.9.7k fixes security vuln CVE-2006-4339

Bug 146421 - OpenSSL 0.9.8c and 0.9.7k fixes security vuln CVE-2006-4339

Summary: OpenSSL 0.9.8c and 0.9.7k fixes security vuln CVE-2006-4339

Status:	RESOLVED DUPLICATE of bug 146375

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Other

Importance:	High normal (vote)
Assignee:	Gentoo Linux bug wranglers

URL:	http://www.openssl.org/news/secadv_20...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2006-09-05 10:11 UTC by ChazeFroy
Modified:	2006-09-14 16:17 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description ChazeFroy 2006-09-05 10:11:59 UTC

OpenSSL 0.9.8c and 0.9.7k have been released to address an RSA signature forgery vulnerability (CVE-2006-4339).

Advisory: http://www.openssl.org/news/secadv_20060905.txt
Complete changelog: http://www.openssl.org/source/exp/CHANGES

Comment 1 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2006-09-14 16:17:28 UTC

Note to reporter: Please don't restrict access to security unless you also assign the bug to security.

*** This bug has been marked as a duplicate of 146375 ***