This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update for compat-openssl098 fixes the following issues :
Security issue fixed :
- CVE-2015-3195: When presented with a malformed
X509_ATTRIBUTE structure OpenSSL would leak memory. This
structure is used by the PKCS#7 and CMS routines so any
application which reads PKCS#7 or CMS data from
untrusted sources is affected. SSL/TLS is not affected.
Non security issue fixed :
- Prevent segfault in s_client with invalid options
This update was imported from the SUSE:SLE-12:Update update project.
See also :
Update the affected compat-openssl098 packages.
Risk factor :
Medium / CVSS Base Score : 5.0