SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 7550)
Low Nessus Plugin ID 57234
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionThis update of openssl fixes a timing attack. This attack can be used to obtain the private key of a TLS server whenever ECDSA signatures are used. CVE-2011-1945: CVSS v2 Base Score: 4.3 (important) (AV:N/AC:M/Au:N/C:P/I:N/A:N): Cryptographic Issues. (CWE-310)
SolutionApply ZYPP patch number 7550.