[Bug 247846] Re: generating a 160-bit DSS key leads to eternal loop

Dwayne Litzenberger Sat, 12 Jul 2008 08:40:52 -0700

First of all, don't use RandomPool like that unless you want to end up with 
bugs like CVE-2008-0166 (the Debian openssl bug).  See this:
    http://www.lag.net/pipermail/paramiko/2008-January/000599.html
    http://www.lag.net/pipermail/paramiko/2008-April/000678.html


I've confirmed this bug on my machine.

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-0166

** Changed in: pycrypto
     Assignee: (unassigned) => Dwayne Litzenberger (dlitz)
       Status: New => Confirmed

** CVE removed: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-0166

-- 
generating a 160-bit DSS key leads to eternal loop
https://bugs.launchpad.net/bugs/247846
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 247846] Re: generating a 160-bit DSS key leads to eternal loop

Reply via email to