User: Password:
Subscribe / Log in / New account

OpenSSL: information leak

Package(s):openssl CVE #(s):CAN-2005-0109
Created:May 23, 2005 Updated:October 11, 2005
Description: Hyper-Threading technology, as used in FreeBSD other operating systems and implemented on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses. See this LWN article for more information.
Trustix TSLSA-2005-0028 kerberos5, 2005-06-13
Mandriva MDKSA-2005:096 openssl 2005-06-06
Red Hat RHSA-2005:476-01 OpenSSL 2005-06-01
Fedora FEDORA-2005-390 openssl096b 2005-05-23
Fedora FEDORA-2005-389 openssl 2005-05-23

(Log in to post comments)

Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds