Detections
Analytics
SuSE 11 Security Update : OpenSSL (SAT Patch Number 2214)
critical Nessus Plugin ID 50937
Language:
Synopsis
The remote SuSE 11 host is missing one or more security updates.Description
This update adds support for RFC5746 TLS renegotiations to address vulnerabilities tracked as (CVE-2009-3555). It also fixes a mishandling of OOM conditions in bn_wexpand. (CVE-2009-3245)Installation notes
This update is provided as RPM packages that can easily be installed onto a running system by using this command :
rpm -Fvh libopenssl-devel.rpm libopenssl0_9_8.rpm libopenssl0_9_8-32bit.rpm libopenssl0_9_8-x86.rpm openssl.rpm openssl-debuginfo.rpm openssl-debugsource.rpm openssl-doc.rpm
Solution
Apply SAT patch number 2214.See Also
http://support.novell.com/security/cve/CVE-2009-3555.html
Plugin Details
Severity: Critical
ID: 50937
File Name: suse_11_libopenssl-devel-100331.nasl
Version: 1.11
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 12/2/2010
Updated: 1/14/2021
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:11:libopenssl0_9_8-32bit, p-cpe:/a:novell:suse_linux:11:libopenssl0_9_8, p-cpe:/a:novell:suse_linux:11:openssl-doc, p-cpe:/a:novell:suse_linux:11:openssl, cpe:/o:novell:suse_linux:11
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 3/31/2010
Reference Information
CVE: CVE-2009-3245, CVE-2009-3555