This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- Buffer overflow in the gnutls_session_get_data function
in lib/gnutls_session.c in GnuTLS 2.12.x before 2.12.14
and 3.x before 3.0.7, when used on a client that
performs nonstandard session resumption, allows remote
TLS servers to cause a denial of service (application
crash) via a large SessionTicket. (CVE-2011-4128)
See also :
Upgrade to Solaris 11/11 SRU 12.4.
Risk factor :
Medium / CVSS Base Score : 4.3