Date: Tue, 30 Sep 2003 14:43:37 -0700 From: Dragos Ruiu <dr@kyx.net> To: "Jacques A. Vidrine" <nectar@FreeBSD.org>, freebsd-security@FreeBSD.org Subject: Re: OpenSSL heads-up Message-ID: <200309301443.37090.dr@kyx.net> In-Reply-To: <20030930203150.GC1996@madman.celabo.org> References: <20030930203150.GC1996@madman.celabo.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On September 30, 2003 01:31 pm, Jacques A. Vidrine wrote: > Don't panic. The vulnerability is denial-of-service. On September 30, 2003 07:52 am, Chris Wysopal wrote on Vulnwatch: > Three specific vulnerabilities have been discovered in the OpenSSL > libraries. Two of these could allow a Denial of Service attack, the third > may result in an attacker being able to execute malicious code under > certain conditions. Please clarify. Conflicting information. thanks, --dr -- Top security experts. Cutting edge tools, techniques and information. Tokyo, Japan November, 2003 http://www.pacsec.jp pgpkey http://dragos.com/ kyxpgp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200309301443.37090.dr>