[CONTROLLER-1355] [SECURITY] LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks CVE-2015-4000 - OpenDaylight JIRA

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Resolution: Done
Affects Version/s: Beryllium
Fix Version/s: None
Component/s: karaf
Labels:
None
Environment:

Operating System: All
Platform: All

External issue ID:
3553
Priority:
Normal

Description

Various components of OpenDaylight are affected by the LOGJAM TLS downgrade vulnerability:

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4000

Attachments

Issue Links

is blocked by

CONTROLLER-1354 [SECURITY] LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks CVE-2015-4000

Resolved

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Unassigned

Reporter:: David Jorm

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 03/Jun/15 3:00 AM

Updated:: 19/Oct/17 9:26 PM

Resolved:: 17/Nov/15 6:03 PM