This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Updated serf packages fix security vulnerability :
Ben Reser discovered that serf did not correctly handle SSL
certificates with NUL bytes in the CommonName or SubjectAltNames
fields. A remote attacker could exploit this to perform a man in the
middle attack to view sensitive information or alter encrypted
See also :
Update the affected lib64serf-devel and / or lib64serf0 packages.
Risk factor :
Medium / CVSS Base Score : 4.0
CVSS Temporal Score : 3.5
Public Exploit Available : true