openSUSE Security Update : libressl (openSUSE-2015-916)
Medium Nessus Plugin ID 87518
SynopsisThe remote openSUSE host is missing a security update.
DescriptionLibreSSL was updated to fix two security issues inherited from OpenSSL.
The following vulnerabilities were fixed :
- CVE-2015-3194: NULL pointer dereference in client side certificate validation
- CVE-2015-3195: Memory leak in PKCS7 - not reachable from TLS/SSL
SolutionUpdate the affected libressl packages.