This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Security Fix(es) :
- Multiple flaws were found in the way nettle implemented
elliptic curve scalar multiplication. These flaws could
potentially introduce cryptographic weaknesses into
nettle's functionality. (CVE-2015-8803, CVE-2015-8804,
- It was found that nettle's RSA and DSA decryption code
was vulnerable to cache-related side channel attacks. An
attacker could use this flaw to recover the private key
from a co-located virtual-machine instance.
Additional Changes :
See also :
Update the affected nettle, nettle-debuginfo and / or nettle-devel
Risk factor :
High / CVSS Base Score : 7.5