Security Alert - Debian/Ubuntu
A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems.
Keys generated by OpenSSL on Debian and Ubuntu systems are vulnerable to attack and are considered unsafe. Anyone using such keys is urged to remove them wherever they are used and patch the Debian/Ubuntu packages before generating new keys. For more information see the Ubuntu security notice and it links, in particular the one discussing OpenSSH. For Debian, additional information/instructions as well as downloads of fixed packages are available via the following links for OpenSSL and OpenSSH.