Bug 698175
Summary: | Add call to DH_check_pub_key() in DH_compute_key() by Diffie-Hellman key exchange | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Jan Lieskovsky <jlieskov> |
Component: | openssl | Assignee: | Tomas Mraz <tmraz> |
Status: | CLOSED ERRATA | QA Contact: | BaseOS QE Security Team <qe-baseos-security> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 5.7 | CC: | mvadkert, pvrabec |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://osvdb.org/show/osvdb/71845 | ||
Whiteboard: | |||
Fixed In Version: | openssl-0.9.8e-20.el5 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-07-21 07:41:46 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Jan Lieskovsky
2011-04-20 11:14:57 UTC
(In reply to comment #0) > Removing the DH_check_pub_key() call from DH_compute_key() function > would solve the false indication problem and would not break the > FIPS compatibility (DH algorithm is supported by not approved, so > it is not a part of algorithm validation process). s/Removing/Adding back/ here. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2011-1010.html |