openSUSE Security Update : libtcnative-1-0 (openSUSE-2016-1375)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for libtcnative-1-0 fixes the following issues :

- Upgrade to libtcnative-1.1.34 (bugfix release)
(bsc#1004455) See
https://tomcat.apache.org/native-1.1-doc/miscellaneous/c
hangelog.html

- Unconditionally disable export Ciphers.

- Improve ephemeral key handling for DH and ECDH.
Parameter strength is by default derived from the
certificate key strength.

- APIs SSL.generateRSATempKey() and SSL.loadDSATempKey()
are no longer supported.

- Various bugfixes.

This update was imported from the SUSE:SLE-12:Update update project.

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=1004455
https://tomcat.apache.org/native-1.1-doc/miscellaneous/changelog.html

Solution :

Update the affected libtcnative-1-0 packages.

Risk factor :

Medium

Family: SuSE Local Security Checks

Nessus Plugin ID: 95530 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now