Detections
Analytics

FreeBSD : LibreSSL -- use-after-free (eeca52dc-866c-11eb-b8d6-d4c9ef517024)

high Nessus Plugin ID 147857

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

OpenBSD reports :

A TLS client using session resumption may cause a use-after-free.

Solution

Update the affected package.

See Also

https://marc.info/?l=openbsd-announce&m=161582456312832&w=2

http://www.nessus.org/u?f4f0335f

http://www.nessus.org/u?d57f5df0

Plugin Details

Severity: High

ID: 147857

File Name: freebsd_pkg_eeca52dc866c11ebb8d6d4c9ef517024.nasl

Version: 1.1

Type: local

Published: 3/17/2021

Updated: 3/17/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:libressl, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 3/16/2021

Vulnerability Publication Date: 3/15/2021