Mike Tancsa wrote:
> Does anyone know the practicality of this attack ? i.e. is this trivial
> to do ?
I'm as surprised by this as you are -- usually I get advance warning about
upcoming OpenSSL issues via vendor-sec -- but on first glance it looks like
this attack is indeed trivial.
Also, it loo
At 10:53 AM 9/5/2006, Mike Tancsa wrote:
Does anyone know the practicality of this attack ? i.e. is this
trivial to do ?
Also, for RELENG_6, can someone confirm the patch referenced in
http://www.openssl.org/news/patch-CVE-2006-4339.txt
be applied with the one change of
+{ERR_REASON(RSA_R_P
Does anyone know the practicality of this attack ? i.e. is this trivial to do ?
---Mike
Mike Tancsa, tel +1 519 651 3400
Sentex Communications,[EMAIL PROT
