FreeBSD : socat -- diffie hellman parameter was not prime (a52a7172-c92e-11e5-96d6-14dae9d210b8)
High Nessus Plugin ID 88513
SynopsisThe remote FreeBSD host is missing a security-related update.
Descriptionsocat reports :
In the OpenSSL address implementation the hard-coded 1024 bit DH p parameter was not prime. The effective cryptographic strength of a key exchange using these parameters was weaker than the one one could get by using a prime p. Moreover, since there is no indication of how these parameters were chosen, the existence of a trapdoor that makes possible for an eavesdropper to recover the shared secret from a key exchange that uses them cannot be ruled out.
SolutionUpdate the affected package.