[Pkg-openssl-devel] Bug#650621: CVE-2011-4354: OpenSSL 0.9.8g (32-bit builds) bug leaks ECC private keys
Luciano Bello
luciano at debian.org
Thu Dec 1 12:12:50 UTC 2011
Package: openssl
Version: 0.9.8g-15+lenny14
Severity: grave
Hi Kurt,
This vulnerability had been announce against OpenSSL 0.9.8g (which is
available in oldstable): http://www.openwall.com/lists/oss-security/2011/12/01/6
Would you like to coordinate a DSA with the security team?
Best regards,
-luciano
More information about the Pkg-openssl-devel
mailing list