Mandrake Linux Security Advisory : openssl (MDKSA-2007:193)
Critical Nessus Plugin ID 26950
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA flaw in how OpenSSL performed Montgomery multiplications was discovered %that could allow a local attacker to reconstruct RSA private keys by examining another user's OpenSSL processes (CVE-2007-3108).
Moritz Jodeit found that OpenSSL's SSL_get_shared_ciphers() function did not correctly check the size of the buffer it was writing to. As a result, a remote attacker could exploit this to write one NULL byte past the end of the applications's cipher list buffer, which could possibly lead to a denial of service or the execution of arbitrary code (CVE-2007-5135).
Updated packages have been patched to prevent these issues.
SolutionUpdate the affected packages.