SuSE 11.1 Security Update : libopenssl (SAT Patch Number 6521)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

This update adds libopenssl0_9_8-hmac packages, that, when installed,
will enforce FIPS 140-2 self-test being run upon first use of the
library.

If FIPS mode is enforced, these new packages are required in order to
enable FIPS mode successfully.

The update also imposes limits on the parameters of a Diffie-Hellman
key exchange to prevent man-in-the-middle (MITM) attacks in FIPS mode.
(CVE-2011-5095)

See also :

https://bugzilla.novell.com/show_bug.cgi?id=767256
https://bugzilla.novell.com/show_bug.cgi?id=768097
http://support.novell.com/security/cve/CVE-2011-5095.html

Solution :

Apply SAT patch number 6521.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N)

Family: SuSE Local Security Checks

Nessus Plugin ID: 64186 ()

Bugtraq ID:

CVE ID: CVE-2011-5095

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now