Detections
Analytics

openSUSE Security Update : stunnel (openSUSE-2021-160)

medium Nessus Plugin ID 145435

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for stunnel fixes the following issues :

Security issue fixed :

 - The 'redirect' option was fixed to properly handle 'verifyChain = yes' (bsc#1177580).

Non-security issues fixed :

 - Fix startup problem of the stunnel daemon (bsc#1178533)

 - update to 5.57 :

 - Security bugfixes

 - New features

 - New securityLevel configuration file option.

 - Support for modern PostgreSQL clients

 - TLS 1.3 configuration updated for better compatibility.

 - Bugfixes

 - Fixed a transfer() loop bug.

 - Fixed memory leaks on configuration reloading errors.

 - DH/ECDH initialization restored for client sections.

 - Delay startup with systemd until network is online.

 - A number of testing framework fixes and improvements.

 - update to 5.56 :

 - Various text files converted to Markdown format.

 - Support for realpath(3) implementations incompatible with POSIX.1-2008, such as 4.4BSD or Solaris.

 - Support for engines without PRNG seeding methods (thx to Petr Mikhalitsyn).

 - Retry unsuccessful port binding on configuration file reload.

 - Thread safety fixes in SSL_SESSION object handling.

 - Terminate clients on exit in the FORK threading model.

 - Fixup stunnel.conf handling :

 - Remove old static openSUSE provided stunnel.conf.

 - Use upstream stunnel.conf and tailor it for openSUSE using sed.

 - Don't show README.openSUSE when installing.

 - enable /etc/stunnel/conf.d

 - re-enable openssl.cnf

This update was imported from the SUSE:SLE-15-SP2:Update update project.

Solution

Update the affected stunnel packages.

See Also

https://bugzilla.opensuse.org/show_bug.cgi?id=1177580

https://bugzilla.opensuse.org/show_bug.cgi?id=1178533

Plugin Details

Severity: Medium

ID: 145435

File Name: openSUSE-2021-160.nasl

Version: 1.1

Type: local

Agent: unix

Published: 1/26/2021

Updated: 1/26/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Continuous Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:stunnel, p-cpe:/a:novell:opensuse:stunnel-debuginfo, p-cpe:/a:novell:opensuse:stunnel-debugsource, cpe:/o:novell:opensuse:15.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 1/25/2021

Vulnerability Publication Date: 1/25/2021