Canonical's Marc Deslauriers announced earlier the availability of updated OpenSSL packages for all supported Ubuntu Linux operating systems, which address several vulnerabilities discovered recently.According to to Ubuntu Security Notice USN-3181-1, it would appear that a total of six security issues were fixed by various developers in the OpenSSL packages included in Ubuntu. These packages provide the Secure Socket Layer (SSL) cryptographic library and tools needed by various applications.
Discovered by Guido Vranken, the first OpenSSL security flaw (CVE-2016-2177) could allow a remote attacker to exploit an undefined behavior when performing pointer arithmetic to cause a denial of service by crashing OpenSSL. This vulnerability is only affecting the Ubuntu 12.04 LTS and Ubuntu 14.04 LTS rele... (read more)
from Softpedia News / Linux http://ift.tt/2jAY92F
via IFTTT
No comments:
Post a Comment