|
|
Log in / Subscribe / Register

ruby: encrypted ciphertext duplication

Package(s):ruby CVE #(s):CVE-2016-7798
Created:October 13, 2016 Updated:October 19, 2016
Description: From the Mageia advisory:

A bug in openssl module caused using an all 0 IV for AES-GCM ciphers in some cases (when setting a key, an iv, and then setting a key a again.

Alerts:
Mageia MGASA-2016-0342 ruby 2016-10-13
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds