Fedora 15 : tigervnc-1.0.90-4.fc15 (2011-6838)
Medium Nessus Plugin ID 54633
SynopsisThe remote Fedora host is missing a security update.
DescriptionThis update fixes following issue :
- vncviewer could have sent user password to VNC server without proper validation of the server's X.509 certificate when secure X.509 authentication was requested (CVE-2011-1775)
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected tigervnc package.