This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote SuSE 11 host is missing one or more security updates.
GnuTLS has been patched to ensure proper parsing of session ids during
the TLS/SSL handshake. Additionally, three issues inherited from
libtasn1 have been fixed.
Further information is available at
These security issues have been fixed :
- Possible memory corruption during connect.
- Multiple boundary check issues could allow DoS.
- asn1_get_bit_der() can return negative bit length.
- Possible DoS by NULL pointer dereference (CVE-2014-3469)
See also :
Apply SAT patch number 9320.
Risk factor :
Medium / CVSS Base Score : 6.8