« List of all CVEs

CVE-2011-4121

Published: 11/26/2019 Last updated: 8/7/2024 Reserved: 10/18/2011

The OpenSSL extension of Ruby (Git trunk) versions after 2011-09-01 up to 2011-11-03 always generated an exponent value of '1' to be used for private RSA key generation. A remote attacker could use this flaw to bypass or corrupt integrity of services, depending on strong private RSA keys generation mechanism.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (1)

conf-ruby

Products affected (1)

Product Vendor Version
OpenSSL extension of Ruby (Git trunk) OpenSSL n/a

References (8)