[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] More OpenSSL issues

To: fulldisclosure@xxxxxxxxxxxx
Subject: Re: [FD] More OpenSSL issues
From: Brandon Vincent <Brandon.Vincent@xxxxxxx>
Date: Thu, 05 Jun 2014 18:46:29 -0700

Per the security advisory:

"The attack can only be performed between a vulnerable client *and* server."

This would have produced quite a media nightmare if most browsers used
OpenSSL instead of NSS, etc.

Chrome for Android was affected and is patched in 35.0.1916.141.

Brandon Vincent

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

References:
- [FD] More OpenSSL issues
  - From: Jordan Urie

Prev by Date: [FD] Computer hackers face life in prison under new Government crackdown on cyber terrorism | Mail Online
Next by Date: Re: [FD] Computer hackers face life in prison under new Government crackdown on cyber terrorism | Mail Online
Previous by thread: [FD] More OpenSSL issues
Next by thread: Re: [FD] More OpenSSL issues
Index(es):
- Date
- Thread