renegotiation handshakes with an existing connection, which allows
man-in-the-middle attackers to insert data into HTTPS sessions,
and possibly other types of sessions protected by TLS or SSL, by
sending an unauthenticated request that is processed retroactively
by a server in a post-renegotiation context, related to a plaintext
injection attack, aka the Project Mogul issue (CVE-2009-3555).
The gnutls_x509_crt_get_serial function in the GnuTLS library before
1.2.1, when running on big-endian, 64-bit platforms, calls the
asn1_read_value with a pointer to the wrong data type and the wrong
length value, which allows remote attackers to bypass the certificate
renegotiation handshakes with an existing connection, which allows
man-in-the-middle attackers to insert data into HTTPS sessions,
and possibly other types of sessions protected by TLS or SSL, by
sending an unauthenticated request that is processed retroactively
by a server in a post-renegotiation context, related to a plaintext
injection attack, aka the Project Mogul issue (CVE-2009-3555).
Packages for 2008.0 are provided for Corporate Desktop 2008.0
customers.
This update fixes this vulnerability.
renegotiation handshakes with an existing connection, which allows
man-in-the-middle attackers to insert data into HTTPS sessions,
and possibly other types of sessions protected by TLS or SSL, by
sending an unauthenticated request that is processed retroactively
by a server in a post-renegotiation context, related to a plaintext
injection attack, aka the Project Mogul issue (CVE-2009-3555).
Additionally the NSPR package has been upgraded to 4.8.4 that brings
numerous upstream fixes.
Packages for 2008.0 are provided for Corporate Desktop 2008.0
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
Description:
Previous versions of httpd are vulnerable to a man-in-the-middle attack
during TLS session renegotiation, sometimes referred to as the "Project
Mogul" issue. This vulnerability has been addressed in this update.
Additionally, a denial of service vulnerability and an access
restriction bypass in mod_proxy_ftp are resolved in this update.
http://wiki.rpath.com/Advisories:rPSA-2009-0155
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891
Description:
Previous versions of httpd are vulnerable to a man-in-the-middle attack
during TLS session renegotiation, sometimes referred to as the "Project
Mogul" issue. This vulnerability has been addressed in this update.
Additionally, two denial of service vulnerabilities and an access
restriction bypass in mod_proxy_ftp are resolved in this update.
http://wiki.rpath.com/Advisories:rPSA-2009-0154
