This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
It was discovered that GnuTLS leaked timing information when
decrypting TLS/SSL protocol encrypted records when CBC-mode cipher
suites were used. A remote attacker could possibly use this flaw to
retrieve plain text from the encrypted packets by using a TLS/SSL
server as a padding oracle. (CVE-2013-1619)
See also :
Run 'yum update gnutls' to update your system.
Risk factor :
Medium / CVSS Base Score : 4.0
Family: Amazon Linux Local Security Checks
Nessus Plugin ID: 69731 ()
CVE ID: CVE-2013-1619