Amazon Linux AMI : ca-certificates Fradulent HTTPS Certificates (ALAS-2011-03)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote Amazon Linux AMI host is missing a security update.

Description :

This update includes the latest updates to the root Certificate
Authority list from Mozilla. It was found that a Certificate Authority
(CA) issued fraudulent HTTPS certificates. This update removes that
CA's root certificate from the ca-certificates package, rendering any
HTTPS certificates signed by that CA as untrusted.

See also :

https://admin.fedoraproject.org/updates/ca-certificates-2011.78-1.fc15
http://www.nessus.org/u?e793d46a

Solution :

Run 'yum upgrade ca-certificates' to upgrade your system.

Risk factor :

High

Family: Amazon Linux Local Security Checks

Nessus Plugin ID: 69562 ()

Bugtraq ID:

CVE ID: