CVE-2020-1968 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Private key recovery |
| Description | A flaw was found in openssl in versions 1.0.2 to 1.0.2w. A Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted communications sent over that TLS connection. The highest threat from this vulnerability is to data confidentiality. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2317 | lib32-openssl-1.0 | 1.0.2.u-1 | High | Unknown | ||
| AVG-1229 | openssl-1.0 | 1.0.2.u-1 | High | Unknown | FS#67858 |
| References |
|---|
https://raccoon-attack.com/ |