[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping

Subject: [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
From: jra at baylink.com (Jay Ashworth)
Date: Wed, 5 Mar 2014 16:03:38 -0500 (EST)
In-reply-to: <[email protected]>

----- Original Message -----
> From: "Leo Bicknell" <bicknell at ufp.org>

> On Mar 4, 2014, at 9:07 PM, Jay Ashworth <jra at baylink.com> wrote:
> 
> > Is this the *same* bug that just broke in Apple code last week?
> 
> No, the Apple bug was the existence of an /extra/ "goto fail;".
> 
> The GnuTLS bug was that it was /missing/ a "goto fail;".
> 
> I'm figuring the same developer worked on both, and just put the line
> in the wrong repository. :)

Those who speculate that these bugs happened at the behest of the NSA
would probably agree with you.

Cheers,
-- jra
-- 
Jay R. Ashworth                  Baylink                       jra at baylink.com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates       http://www.bcp38.info          2000 Land Rover DII
St Petersburg FL USA      BCP38: Ask For It By Name!           +1 727 647 1274

Follow-Ups:
- [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
  - From: deleskie at gmail.com (jim deleskie)

References:
- [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
  - From: bicknell at ufp.org (Leo Bicknell)

Prev by Date: valley free routing?
Next by Date: valley free routing?
Previous by thread: [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
Next by thread: [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
Index(es):
- Date
- Thread