openSUSE Security Update : curl (curl-1232)
High Nessus Plugin ID 40788
SynopsisThe remote openSUSE host is missing a security update.
Descriptioncurl did not detect embedded null characters in certificate names. By using specially crafted certificates attackers could exploit that to conduct man in the middle attacks (CVE-2009-2417).
Note the previous update that was supposed to fix the issue accidentally lacked the actual fix which was corrected this time.
SolutionUpdate the affected curl packages.