Summary
The remote host is missing an update to nss
announced via advisory FEDORA-2009-1276.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update nss' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-1276
Insight
Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.
Update Information:
This updates adds protection against rogue CA that was generated as a proof-of- concept of the MD5 collision attacks against X509 signatures:
http://www.win.tue.nl/hashclash/rogue-ca/ , related to CVE-2004-2761.
ChangeLog:
* Fri Jan 23 2009 Kai Engert - 3.12.2.0-2
- Update to NSS_3_12_2_WITH_CKBI_1_73_RTM
Severity
Classification
-
CVE CVE-2004-2761 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N
Related Vulnerabilities