New OpenSSL Vulnerabilities Rediscovered and Fixed Four Years After Initial Report

Posted by thesilviu on May 6, 2014 2:23 PM EDT
Softpedia; By Silviu Stahie
Mail this story
Print this story

OpenSSL seems to be the source of numerous problems, especially now that people have started to look a lot more closely at the source. Yet another bug has been discovered in the OpenSSL package and, to make things worse, it's a four-year-old problem that has remained unsolved until now.

OpenBSD developer Ted Unangst was looking over the OpenSSL source to find ways of dealing with the Heartbleed issue when he discovered that the package featured a number of exploit mitigation countermeasures. When he disabled those countermeasures, OpenSSL ceased to function.

Full Story

» Read more about: Story Type: News Story

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.