Lately enough Linux distributions βρέθηκαν να είναι ευάλωτες σε hacks εξαιτίας ενός σφάλματος που επιτρέπει στους hackers να παρακάμψουν τα πρωτόκολλα security to watch and have access to encrypted information. A member of the Red Hat security team discovered a bug in the GnuTLS library that allows hackers to easily bypass Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols.
Vulnerability affects the verification of the certificate, which means that supposedly secure connections are not so safe. One could endanger the secure connection by using a man-in-the-middle attack, acting as a traffic monitoring, financial transaction or secure information server.
The researcher who discovered the a security vacuum is the Greek Nikos Mavrogiannopoulos of the Red Hat technology team that says:
Nikos Mavrogiannopoulos of the Security Technologies Team of Red Hat Security and the GnuTLS project discovered a certificate verification security issue affecting GnuTLS on February 19, 2014, while checking the code. We then used our standard processes to notify and work with other affected distributions. We successfully closed the March 3, 2014 security vulnerability in Red Hat, GnuTLS, and more.
The discovery of the vulnerability was also announced by other Linux distributions.
See her Ubuntu announcement
