May 16, 2008

Security Alert: Debian & Ubuntu Linux Weak Encryption Keys

Computers running Debian & Ubuntu Linux are vulnerable to exploits. Users that connect to Debian & Ubuntu Linux servers via SSH are vulnerable. Users that generated cryptographic material such as SSH keys or SSL certificates on affected systems are also vulnerable. The most serious of these vulnerabilities may allow malicious attackers to gain unauthorized login access or eavesdrop on encrypted communications.

For What You Need To Do, see Security Alert - Debian & Ubuntu Linux Weak Encryption Keys.

Information Security Office

Computing Services

Security Alert: Debian & Ubuntu Linux Weak Encryption Keys