OpenSSL crypto/bn/bn_mont.c BN_from_montgomery Function Local RSA Key Disclosure

2007-08-13T05:52:13
ID OSVDB:37055
Type osvdb
Reporter OSVDB
Modified 2007-08-13T05:52:13

Description

No description provided by the source

References:

Vendor Specific Solution URL: http://security.gentoo.org/glsa/glsa-200710-06.xml Vendor Specific News/Changelog Entry: http://cvs.openssl.org/chngview?cn=16275 Vendor Specific News/Changelog Entry: http://cvs.openssl.org/chngview?cn=16275</a> Vendor Specific News/Changelog Entry: http://openssl.org/news/patch-CVE-2007-3108.txt</a> Vendor Specific News/Changelog Entry: http://www.kb.cert.org/vuls/id/RGII-74KLP3</a> Vendor Specific News/Changelog Entry: https://issues.rpath.com/browse/RPL-1633</a> Vendor Specific News/Changelog Entry: http://support.avaya.com/elmodocs2/security/ASA-2007-485.htm</a> Vendor Specific News/Changelog Entry: http://www.bluecoat.com/support/securityadvisories/advisory_openssl_rsa_key_reconstruction_vulnerability</a> Vendor Specific News/Changelog Entry: http://openssl.org/news/patch-CVE-2007-3108.txt Vendor Specific News/Changelog Entry: https://issues.rpath.com/browse/RPL-1613</a> Secunia Advisory ID:27186 Secunia Advisory ID:27330 Secunia Advisory ID:26411 Secunia Advisory ID:26893 Secunia Advisory ID:27205 Secunia Advisory ID:27078 Secunia Advisory ID:27097 Secunia Advisory ID:27770 Secunia Advisory ID:27870 Secunia Advisory ID:27021 RedHat RHSA: RHSA-2007:0964 RedHat RHSA: RHSA-2007:0813 RedHat RHSA: RHSA-2007:1003 Other Advisory URL: http://www.openbsd.org/errata40.html Other Advisory URL: http://www.ubuntulinux.org/support/documentation/usn/usn-522-1 Other Advisory URL: http://lists.rpath.com/pipermail/security-announce/2007-September/000252.html Other Advisory URL: http://lists.rpath.com/pipermail/security-announce/2007-August/000222.html Other Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:193 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200710-06.xml FrSIRT Advisory: ADV-2007-4010 FrSIRT Advisory: ADV-2007-2759 CVE-2007-3108 CERT VU: 724968 Bugtraq ID: 25163