A New OpenSSL Vulnerability

By LWN

The OpenSSL project has disclosed a new certificate validation vulnerability. “During certificate verification, OpenSSL (starting from version 1.0.1n and 1.0.2b) will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an…

From: Linux.com

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail