Critical Linux Vulnerability Discovered

From Ars Technica:
Hundreds of open source packages, including the Red Hat, Ubuntu, and Debian
distributions of Linux, are susceptible to attacks that circumvent the most widely used technology to prevent eavesdropping on the Internet, thanks to an extremely critical vulnerability in a widely used cryptographic code library.
The bug in the GnuTLS library makes it trivial for attackers to bypass secure sockets layer (SSL) and Transport Layer Security (TLS) protections available on websites that depend on the open source package. Initial estimates included in Internet discussions such as this one indicate that more than 200 different operating systems or applications rely on GnuTLS to implement crucial SSL and TLS operations, but it wouldn't be surprising if the actual number is much higher. Web applications, e-mail programs, and other code that use the library are vulnerable to exploits that allow attackers monitoring connections to silently decode encrypted traffic passing between end users and servers.
The bug is the result of commands in a section of the GnuTLS code that verify the authenticity of TLS certificates, which are often known simply as X509 certificates.

3 comments:

  1. Certsout.com provides authentic IT Certification exams preparation material guaranteed to make you pass in the first attempt. Download instant free demo & begin preparation. AD01 exam dumps

    ReplyDelete
  2. We are dedicated to the breeding of the finest quality, sweet-tempered rough-coated pug puppies at the most reasonable prices. We take great pride in the feedback received from purchasers of our puppies that their puppies have grown up to be very social and friendly adult dogs. This provides us with the necessary incentive to continue breeding these wonderful, loving and loyal companions..
    Pug Puppies for sale
    pug puppy
    pug for sale
    pug puppies for sale near me
    pug puppies for sale under 500
    pug for sale near me

    ReplyDelete