FreeBSD : gnutls -- RSA Signature Forgery Vulnerability (64bf6234-520d-11db-8f1a-000a48049292)
Medium Nessus Plugin ID 22501
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSecunia reports :
A vulnerability has been reported in GnuTLS, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to an error in the verification of certain signatures. If a RSA key with exponent 3 is used, it may be possible to forge PKCS #1 v1.5 signatures signed with that key.
SolutionUpdate the affected packages.