[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Ruby / OpenSSL security issue
From: |
Leo Famulari |
Subject: |
Ruby / OpenSSL security issue |
Date: |
Mon, 19 Sep 2016 22:06:36 -0400 |
User-agent: |
Mutt/1.7.0 (2016-08-17) |
Ruby users,
There is a bug report on Ruby's OpenSSL module regarding IV re-use in
AES-GCM mode [0].
Does anyone volunteer to investigate the bug report and decide what to
do about it for our Ruby package?
[0]
http://seclists.org/oss-sec/2016/q3/562
https://github.com/ruby/openssl/issues/49
- Ruby / OpenSSL security issue,
Leo Famulari <=