openssl package

Can bug present in the Debian OpenSSL packages affect Red Hat / FreeBSD / CentOS Linux UNIX / Windows workstation / server users?

{ 1 comment }

Luciano Bello discovered that the random number generator in Debian’s openssl package is predictable. This is caused by an incorrect Debian-specific change to the openssl package (CVE-2008-0166). As a result, cryptographic key material may be guessable.