Re: gnutls security breach

[NoSpaze <nospaze@gmail.com>]

On Wed, 2014-03-05 at 03:10 -0500, Ric Moore wrote:
> Anyone see this?
> http://arstechnica.com/security/2014/03/critical-crypto-bug-leaves-linux-hundreds-of-apps-open-to-eavesdropping/
> Yeow! I just did update / upgrade to Jessy, but didn't see the security 
> fix come through yet. Ric

I wanted to know if this has a major influence on my system:

# lsof -n | grep libgnutls|awk '{ print $1; }'|sort|uniq -c
      6 apache2
      1 AudioOutp
      1 AudioThre
      3 BrowserBl
      1 BrowserWa
      5 CachePool
      1 Chrome_Ca
      6 Chrome_Ch
      1 Chrome_DB
      2 Chrome_Fi
      1 Chrome_Hi
      1 Chrome_IO
      1 Chrome_Pr
      1 Chrome_Sa
      1 Chrome_Sy
     37 chromium
      1 CrShutdow
      1 cupsd
      1 dconf
      1 evolution
      1 exim4
      1 extension
      1 FFmpegDem
      3 gdbus
      2 gmain
      2 gvfs-afc-
      5 HTMLParse
      1 IndexedDB
      1 inotify_r
      1 LevelDBEn
     11 libvirtd
      1 Media
      1 MediaStre
      1 NetworkCh
      1 NetworkMa
      1 nm-applet
      1 NSS
      1 plugin_cr
      2 Proxy
      1 renderer_
      2 threaded-
      5 VC
      1 WorkerPoo

So, no problem for me, but seeing apache there makes me think If I
should continue to use online banking...

Anyway, I don't find any concrete information on the bug's effects on
common systems...

Greets!
----------------------------------------------
Rodolfo Alcazar Portillo - rodolfoap@gmail.com
otbits.blogspot.com / counter.li.org: #367962
----------------------------------------------
"Ich will Microsoft wirklich nicht zerstören. Das wird nur ein gänzlich
unbeabsichtigter Nebeneffekt sein."
- Linus Torvalds