Major Linux Vulnerability: Debian PRNG
Posted in Geek Stuff, Technology, tagged Debian, linux, security, Ubuntu on May 15, 2008 | 2 Comments »
Two days ago this vulnerability was released: http://www.debian.org/security/2008/dsa-1571
Luciano Bello discovered that the random number generator in Debian’s openssl package is predictable. This is caused by an incorrect Debian-specific change to the openssl package (CVE-2008-0166). As a result, cryptographic key material may be guessable.
This is a Debian-specific vulnerability which does not affect other operating systems which [...]