version 1.328, 2006/09/08 20:35:11 |
version 1.329, 2006/09/09 03:04:22 |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href="errata.html#openssl">Sep 8, 2006: |
|
Due to incorrect PKCS#1 v1.5 padding validation in OpenSSL, it is |
|
possible for an attacker to construct an invalid signature which |
|
OpenSSL would accept as a valid PKCS#1 v1.5 signature.</a> |
<li><a href="errata.html#bind">Sep 8, 2006: |
<li><a href="errata.html#bind">Sep 8, 2006: |
Two Denial of Service issues have been found with BIND.</a> |
Two Denial of Service issues have been found with BIND.</a> |
<li><a href="errata.html#sppp">Sep 2, 2006: |
<li><a href="errata.html#sppp">Sep 2, 2006: |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href="errata38.html#openssl">Sep 8, 2006: |
|
Due to incorrect PKCS#1 v1.5 padding validation in OpenSSL, it is |
|
possible for an attacker to construct an invalid signature which |
|
OpenSSL would accept as a valid PKCS#1 v1.5 signature.</a> |
<li><a href="errata38.html#bind">Sep 8, 2006: |
<li><a href="errata38.html#bind">Sep 8, 2006: |
Two Denial of Service issues have been found with BIND.</a> |
Two Denial of Service issues have been found with BIND.</a> |
<li><a href="errata38.html#sppp">Sep 2, 2006: |
<li><a href="errata38.html#sppp">Sep 2, 2006: |