FreeBSD : OpenSSL -- TLS 1.1, 1.2 denial of service (00b0d8cd-7097-11e2-98d9-003067c2616f)
Medium Nessus Plugin ID 64488
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionOpenSSL security team reports :
A flaw in the OpenSSL handling of CBC mode ciphersuites in TLS 1.1 and TLS 1.2 on AES-NI supporting platforms can be exploited in a DoS attack.
A flaw in the OpenSSL handling of OCSP response verification can be exploited in a denial of service attack.
SolutionUpdate the affected package.