SuSE 10 Security Update : compat-curl2 (ZYPP Patch Number 6408)
High Nessus Plugin ID 41489
The remote SuSE 10 host is missing a security-related patch.
This update of libcurl2 fixes the 0-character handling in the subject name of a SSL certificate. This bug could be used to execute an undetected man-in-the-middle-attack. (CVE-2009-2417) Additionally the arbitrary file access problem was fixed. (CVE-2009-0037)