OT: looking for help remembering name/info about security bug
Hauke Fath
hauke at Espresso.Rhein-Neckar.DE
Tue Jan 11 12:26:04 CST 2022
On Mon, 10 Jan 2022 22:04:33 -0800, Stan Sieler via cctalk wrote:
> It may have been that either the routine wasn't getting called when it
> should, or that the programmer misinterpreted what the return value meant.
The Debian 4 OpenSSL disaster comes to mind, where IIRC a know-it-all
package manager beautified the source and reduced the effective length
of any generated keys to 32 bit. But that was more like 15 yrs ago...
Cheerio,
Hauke
--
Hauke Fath <hauke at Espresso.Rhein-Neckar.DE>
Linnéweg 7
64342 Seeheim-Jugenheim
Germany
More information about the cctalk
mailing list