The OpenSSL extension of Ruby (Git trunk) versions after 2011-09-01 up to 2011-11-03 always generated an exponent value of '1' to be used for private RSA key generation. A remote attacker could use this flaw to bypass or corrupt integrity of services, depending on strong private RSA keys generation mechanism.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2019-11-26T04:35:56

Updated: 2024-08-07T00:01:50.387Z

Reserved: 2011-10-18T00:00:00

Link: CVE-2011-4121

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-11-26T05:15:13.960

Modified: 2020-04-30T14:44:12.197

Link: CVE-2011-4121

cve-icon Redhat

Severity : Important

Publid Date: 2011-11-03T00:00:00Z

Links: CVE-2011-4121 - Bugzilla