Hi,
It seems that CERT now has a public disclosure page about the recent Diffie=
-Hellman curve encryption vulnerability detailing software revisions that h=
ave the issue and versions that have it fixed. It currently shows unknown n=
ext to the Linux Kernel so might be a good idea to update this with the cor=
rect information? https://www.kb.cert.org/vuls/id/304725=20
Thanks,
Jamie
Hi Jamie,
On Thu, Aug 9, 2018 at 9:38 AM Jamie Mccrae <[email protected]> wr=
ote:
>
> Hi,
> It seems that CERT now has a public disclosure page about the recent Diff=
ie-Hellman curve encryption vulnerability detailing software revisions that=
have the issue and versions that have it fixed. It currently shows unknown=
next to the Linux Kernel so might be a good idea to update this with the c=
orrect information? https://www.kb.cert.org/vuls/id/304725
For BR/EDR that is on the controller so there is nothing much we can
do about, for LE this is host side but afaik we do perform the
necessary checks so we should probably contact them using the link in:
https://www.kb.cert.org/vuls/id/CHEU-AWKKAG
@Marcel: Do you have any comments on this?
--=20
Luiz Augusto von Dentz