|
Family: Slackware Local Security Checks --> Category: infos
SSA-2005-286-01 OpenSSL Vulnerability Scan
Vulnerability Scan Summary SSA-2005-286-01 OpenSSL
Detailed Explanation for this Vulnerability Test
New OpenSSL packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1,
10.2, and -current to fix a security issue. Under certain conditions, an
attacker acting as a "man in the middle" may force a client and server to
fall back to the less-secure SSL 2.0 protocol.
More details about this issue may be found here:
http://www.openssl.org/news/secadv_20051011.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2969
Click HERE for more information and discussions on this network vulnerability scan.
|