Mandriva Linux Security Advisory : openssl (MDVSA-2010:076-1)

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.


Synopsis :

The remote Mandriva Linux host is missing one or more security
updates.

Description :

This update fixes several security issues in openssl :

- The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL
0.9.8f through 0.9.8m allows remote attackers to cause a
denial of service (crash) via a malformed record in a
TLS connection (CVE-2010-0740)

- OpenSSL before 0.9.8m does not check for a NULL return
value from bn_wexpand function calls which has
unspecified impact and context-dependent attack vectors
(CVE-2009-3245)

- The kssl_keytab_is_available function in ssl/kssl.c in
OpenSSL before 0.9.8n, when Kerberos is enabled but
Kerberos configuration files cannot be opened, could
allow remote attackers to cause a denial of service
(NULL pointer dereference and daemon crash)
(CVE-2010-0433)

- Finally, this update provides support for secure
renegotiation, preventing men-in-the-middle attacks
(CVE-2009-3555).

Packages for 2008.0 and 2009.0 are provided due to the Extended
Maintenance Program for those products.

Update :

Packages for 2009.0 are provided due to the Extended Maintenance
Program.

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.7
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Mandriva Local Security Checks

Nessus Plugin ID: 45563 (mandriva_MDVSA-2010-076.nasl)

Bugtraq ID: 36935
38533
38562
39013

CVE ID: CVE-2009-3245
CVE-2009-3555
CVE-2010-0433
CVE-2010-0740

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now