I lack already released and baggato? It would seem! Some investigators who join to the program Zero Day Initiative di Tipping Point have found a vulnerability in Firefox 3, to said they, somewhat important they have communicated and it to Mozilla. 

Own yesterday Tipping Point has published article in which bug evidences like this, that it plagues version 3,0 thus as in past had interested the 2,0, would allow the execution of arbitrary code, but only through the interaction of the customer. In good substance it is necessary to cliccare an email or to visit a page web “malicious”.
While Mozilla works to the resolution of the Tippin problem point declares not to want to disclose ulterior deepenings approximately the vulnerability in issue, promising but that hardly a patch it will be ready of it will give immediately communication on the pages of own site.

It marks it near:

Here ready on a silver plate a beautiful security bug for Debian and derived in openssl. In good substance the generator of accidental numbers in the package debian of opessl is expectable, consequently also the crittografata key can be discovered. 

Here the data in synthesis:
=> Package: openssl
=> Vulnerability: predictable random number generator
=> Problem type: remote
=> Debian-specific: yes
=> CVE Id (s): CVE-2008-0166
=> Checkout description and recommended fix to here:

To execute a control for the location of keys “weak people”:

# wget http://security.debian.org/project/extra/dowkd/dowkd.pl.gz
# wget http://security.debian.org/project/extra/dowkd/dowkd.pl.gz.asc
# gpg - keyserver subkeys.pgp.net - recv-keys 02D524BE
# gpg - verify dowkd.pl.gz.as c
# gunzip dowkd.pl.gz
# Perl dowkd.pl host localhost

The result would have to be 0. If instead we use Debian or Ubuntu we must supply to a upgrade of openssl that it will carry out “fix” (the repair) of the software vulnerable. In this wiki there is a complete and detailed trattazione of the problem and its solutions.

Source nixCraft.

It marks it near: