Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Submission + - Six new OpenSSL vulnerabilities addressed (www.cio.in)

dachshund writes: "Six new vulnerabilities have been addressed in OpenSSL. The most serious is a timing-based attack against Datagram TLS, capable of completely recover the plaintext from encrypted messages. This flaw was discovered by Nadhem Alfardan and Kenny Paterson at Royal Holloway University. The remaining attacks deal with potential denial of service issues, as well as bug that could potentially leak fragments of memory over the Internet due to the use of an uninitialized buffer. This puts the cap on a year of TLS vulnerabilities headlined by the recent BEAST attack."

Slashdot Top Deals

Real Programmers don't write in PL/I. PL/I is for programmers who can't decide whether to write in COBOL or FORTRAN.

Working...