Language Selection

English French German Italian Portuguese Spanish

'Severe' OpenSSL vuln busts public key crypto

Filed under
Security

Computer scientists say they've discovered a "severe vulnerability" in the world's most widely used software encryption package that allows them to retrieve a machine's secret cryptographic key.

The bug in the OpenSSL cryptographic library is significant because the open-source package is used to protect sensitive data in countless applications and operating systems throughout the world. Although the attack technique is difficult to carry out, it could eventually be applied to a wide variety of devices, particularly media players and smartphones with anti-copying mechanisms.

An OpenSSL official, who asked that his name not be published, said engineers are in the process of pushing out a patch and stressed the attack is difficult to carry out in real-world settings.

More details here




More in Tux Machines

today's howtos

KaOS 2016.06 Moves the Distro to Linux Kernel 4.6, Adds Full-Disk Encryption

The developers of the KaOS Linux operating system have had the great pleasure of announcing the release and immediate availability for download of the KaOS 2016.06 ISO image with some very exciting goodies. First and foremost, the devs have decided to move the distribution from the long-term supported Linux 4.4 kernel series to Linux kernel 4.6, which makes it possible to fully automate the early microcode update. Furthermore, the default desktop environment has been migrated to the Beta of the upcoming KDE Plasma 5.7. Read more

Tiny Core Linux 7.2 Enters Development, First Release Candidate Is Out Now

The developers of one of the smallest GNU/Linux operating systems, Tiny Core, have announced that the next point release in the Tiny Core Linux 7 series, version 7.2, is now open for development. Tiny Core Linux 7.2 RC1 (Release Candidate 1) has been released today, June 25, 2016, and it lets early adopters and public testers get an early taste of what's coming to the final Tiny Core Linux 7.2 operating system in the coming weeks. Read more

Huawei CEO: Will keep using Android as long as it's open

He made the said comment in a Weibo post, where-in he also noted that Google's mobile OS has promoted the development of smartphones, which in turn has benefited consumers. Interestingly, he didn't say anything about whether or not Huawei is developing an in-house mobile OS - said to be called Kirin OS. His silence on the matter, though, can be taken as a confirmation of sorts, especially when his comment reflects the possibility of Google restricting the companies’ freedom with Android in future. Read more Also: Huawei CEO Comments On Rumors about its Independent OS