FreeBSD : The Bouncy Castle Crypto APIs: CVE-2017-13098 ('ROBOT') (6a131fbf-ec76-11e7-aa65-001b216d295b)
Medium Nessus Plugin ID 105502
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionThe Legion of the Bouncy Castle reports :
CVE-2017-13098 ('ROBOT'), a Bleichenbacher oracle in TLS when RSA key exchange is negotiated. This potentially affected BCJSSE servers and any other TLS servers configured to use JCE for the underlying crypto
- note the two TLS implementations using the BC lightweight APIs are not affected by this.
SolutionUpdate the affected package.