Posts Tagged ‘security’

BIND DNSSEC incorrect checks for malformed signatures

Wednesday, January 14, 2009 16:30 No Comments

The DSA_do_verify() function from OpenSSL is used to determine if a DSA digital signature is valid.  When DNSSEC is used within BIND it uses DSA_do_verify() to verify DSA signatures, but checks the function return value incorrectly. How to upgrade it?

This was posted under category: Unix Tags: , , ,

Microsoft security updates for January 2009

Wednesday, January 14, 2009 14:38 No Comments

Here is the new security update: MS09-001 – addresses a vulnerability in Microsoft Windows (KB 958687) How to get the updates If you are using Windows Vista you can manage your updates through the control panel. For more information, see Windows Vista: How to update your operating system.

This was posted under category: Windows Tags: , ,