Language Selection

English French German Italian Portuguese Spanish

'Severe' OpenSSL vuln busts public key crypto

Filed under
Security

Computer scientists say they've discovered a "severe vulnerability" in the world's most widely used software encryption package that allows them to retrieve a machine's secret cryptographic key.

The bug in the OpenSSL cryptographic library is significant because the open-source package is used to protect sensitive data in countless applications and operating systems throughout the world. Although the attack technique is difficult to carry out, it could eventually be applied to a wide variety of devices, particularly media players and smartphones with anti-copying mechanisms.

An OpenSSL official, who asked that his name not be published, said engineers are in the process of pushing out a patch and stressed the attack is difficult to carry out in real-world settings.

More details here




More in Tux Machines

Meizu MX4 Ubuntu Edition Is Official, Will Be at MWC In March

No longer a rumour but fact: Meizu has confirmed the news on its social media accounts this morning, just as the latest flash sale for the Bq Ubuntu Phone was getting underway. Read more

Telegram Desktop for Linux Review

Telegram is an instant messaging service that is best known for its mobile implementation, but a desktop app is also available and it's even better than what users might expect. Read more

KaOS 2015.02 Distro Brings a Unique, Pure KDE Plasma 5 Experience - Screenshot Tour

The KaOS development team was proud to announce on February 24 the immediate availability for download of the KaOS 2015.02 Linux kernel-based operating system for personal computers and laptops. This is the first ever release of the KaOS Linux distribution with the next-generation KDE Plasma desktop environment, powered by the latest KDE Frameworks 5 technology. Read more