Scientific Linux Security Update : gnutls on SL5.x i386/x86_64
Medium Nessus Plugin ID 60492
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionMartin von Gagern discovered a flaw in the way GnuTLS verified certificate chains provided by a server. A malicious server could use this flaw to spoof its identity by tricking client applications using the GnuTLS library to trust invalid certificates. (CVE-2008-4989)
SolutionUpdate the affected gnutls, gnutls-devel and / or gnutls-utils packages.