Infineon firmware security issues
Marc Dequènes (Duck)
duck at redhat.com
Tue Oct 17 09:56:23 UTC 2017
Quack,
So the news (thanks Misc for the alert):
https://www.infineon.com/cms/en/product/promopages/rsa-update/rsa-background
This affects Yubikeys and other hardware:
https://www.yubico.com/support/security-advisories/ysa-2017-01/
There's a nice tool to test if a key is vulnerable:
https://github.com/crocs-muni/roca
I tested keys in the oVirt Puppet repository and none are affected.
You may check your other keys and ensure keys are checked in other
projects.
\_o<
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.ovirt.org/pipermail/infra/attachments/20171017/893f97d1/attachment-0001.sig>
More information about the Infra
mailing list