Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

jeudi 10 avril 2014

UPDATE OpenSSL CRITICAL vulnerability (CERT-EU Security Advisory 2014-034)

OpenSSL library is vulnerable to a memory leakage. Both servers and clients are affected. It can lead to a leak of the content of the memory allowing access to private keys, credentials, or any other confidential data . There are already some proofs of concept of this vulnerability available in the wild exploiting servers and clients.

Lien vers l'article source

Auteur: Cert EU

Catégories: CertEUNombre de vues: 241


Événements SSI