Scientific Linux Security Update : python on SL6.x i386/x86_64
Medium Nessus Plugin ID 71199
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA flaw was found in the way the Python SSL module handled X.509 certificate fields that contain a NULL byte. An attacker could potentially exploit this flaw to conduct man-in-the-middle attacks to spoof SSL servers. Note that to exploit this issue, an attacker would need to obtain a carefully crafted certificate signed by an authority that the client trusts. (CVE-2013-4238)
SolutionUpdate the affected packages.