From owner-freebsd-security  Sat Mar 22  4: 9:30 2003
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D471A37B401
	for <freebsd-security@FreeBSD.org>; Sat, 22 Mar 2003 04:09:27 -0800 (PST)
Received: from ms.is.s.u-tokyo.ac.jp (ms.is.s.u-tokyo.ac.jp [133.11.8.7])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A2D8C43F93
	for <freebsd-security@FreeBSD.org>; Sat, 22 Mar 2003 04:09:25 -0800 (PST)
	(envelope-from tsuyoshi@is.s.u-tokyo.ac.jp)
Received: from localhost (san.is.s.u-tokyo.ac.jp [133.11.28.66])
	by ms.is.s.u-tokyo.ac.jp (8.11.6+Sun/3.7W) with ESMTP id h2MBvRL11233
	for <freebsd-security@FreeBSD.org>; Sat, 22 Mar 2003 20:57:27 +0900 (JST)
Date: Sat, 22 Mar 2003 21:09:23 +0900 (JST)
Message-Id: <20030322.210923.71081935.tsuyoshi@is.s.u-tokyo.ac.jp>
To: freebsd-security@FreeBSD.org
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-03:06.openssl
From: ITO Tsuyoshi <tsuyoshi@is.s.u-tokyo.ac.jp>
In-Reply-To: <200303212052.h2LKqYWw013362@freefall.freebsd.org>
References: <200303212052.h2LKqYWw013362@freefall.freebsd.org>
X-Mailer: Mew version 3.2 on Emacs 21.2 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hello,

Will the fix for the problem (2) be included in ports/security/openssl
in 4.8-RELEASE?  The ports tree has been tagged RELEASE_4_8_0 already,
and the fix for the problem (2) is not yet included.  If it is not,
people should be careful not to overwrite OpenSSL in the base with the
one in the port.

> (2) Czech cryptologists Vlastimil Klima, Ondrej Pokorny, and Tomas Rosa
>     have come up with an extension of the "Bleichenbacher attack" on
>     RSA with PKCS #1 v1.5 padding as used in SSL 3.0 and TLS 1.0.
>     Their attack requires the attacker to open millions of SSL/TLS
>     connections to the server under attack; the server's behaviour
>     when faced with specially made-up RSA ciphertexts can reveal
>     information that in effect allows the attacker to perform a single
>     RSA private key operation on a ciphertext of its choice using the
>     server's RSA key.  Note that the server's RSA key is not
>     compromised in this attack.

Best regards,
Tsuyoshi

---   ITO Tsuyoshi  <tsuyoshi@is.s.u-tokyo.ac.jp>   ---
--- Dept. of Computer Science, University of Tokyo. ---

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message