FREAK: OpenSSL vulnerability (CVE-2015-0204)
Hi,
Some info with regard to the FREAK vulnerability that's been doing rounds on the Internet:
Red Hat Product Security addressed the CVE-2015-0204 vulnerability in OpenSSL (FREAK) in January 2015 with a standard security advisory. The vulnerability was rated as having a Moderate impact.
Please, see the following resources for more detailed information:
- Knowledgebase article: FREAK: OpenSSL vulnerability (CVE-2015-0204) (instructions for mitigation and remediation)
- Red Hat Security Blog: Factoring RSA export keys – FREAK (CVE-2015-0204) (background information and some history)
Responses