This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Updated openssl packages fix security vulnerability :
A read buffer can be freed even when it still contains data that is
used later on, leading to a use-after-free. Given a race condition in
a multi-threaded application it may permit an attacker to inject data
from one connection into another or cause denial of service
Also fixed in this update is a potential security issue with detection
of the critical flag for the TSA extended key usage under certain
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 4.0
CVSS Temporal Score : 3.5
Public Exploit Available : false