Slashdot Mirror

← Back to Stories (view on slashdot.org)

Multiple Vulnerabilities in OpenSSL

Posted by CowboyNeal on Thursday March 18, 2004 @03:55PM from the stay-safe-stay-current dept.

gfilion writes "Updated versions of OpenSSL are now available which correct two security issues: A null-pointer assignment during SSL handshake and an out-of-bounds read that affects Kerberos ciphersuites. Full advisory available on OpenSSL site and US-CERT."

1 of 274 comments (clear)

Min score:

Reason:

Sort:

Re:Non-Exploitable Security DOS Exploit by Anime_Fan · 2004-03-18 19:40 · Score: 0, Redundant

So you honestly believe that Microsoft forwards flaws detected in software to its vendor?
Without charging huge ammounts of cash for forwarding said information. My bet is that nvidia pays huge ammounts to see its flaws in GFX drivers.