Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping (ars technica)
Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping (ars technica)
[Security] Posted Mar 4, 2014 22:50 UTC (Tue) by corbet
According to this
ars technica article, the GnuTLS library has a certificate validation
vulnerability that looks awfully similar to the recently patched Apple
hole. "This time, instead of a single misplaced 'goto fail' command,
the mistakes involve errors with several 'goto cleanup' calls. The GnuTLS
program, in turn, prematurely terminates code sections that are supposed to
establish secure TLS connections only after the other side presents a valid
X509 certificate signed by a trusted source. Attackers can exploit the
error by presenting vulnerable systems with a fraudulent certificate that
is never rejected, despite its failure to pass routine security
checks.
"