FreeBSD : logstash -- SSL/TLS vulnerability with Lumberjack input (c470bcc7-33fe-11e5-a4a5-002590263bf5)
Medium Nessus Plugin ID 85034
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionElastic reports :
Vulnerability Summary: All Logstash versions prior to 1.5.2 that use Lumberjack input (in combination with Logstash Forwarder agent) are vulnerable to a SSL/TLS security issue called the FREAK attack. This allows an attacker to intercept communication and access secure data.
Users should upgrade to 1.5.3 or 1.4.4.
Remediation Summary: Users that do not want to upgrade can address the vulnerability by disabling the Lumberjack input.
SolutionUpdate the affected packages.