Slackware Advisory SSA:2008-210-08 Openssl Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2008-210-08.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2008-210-08

Insight

New openssl packages are available for Slackware 11.0, 12.0, 12.1, and -current to fix security issues. More details about this issues may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0891 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1672 Upgraded OpenSSH packages have been provided to make sure that ssh is not broken my the update -- especially if your machine is a remote one, be SURE to upgrade to the new openssh package as well!

Severity

Classification

CVE CVE-2008-0891, CVE-2008-1672

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Slackware Advisory SSA:2005-310-06 imapd
Slackware Advisory SSA:2006-335-01 tar
Slackware Advisory SSA:2007-222-01 gimp
Slackware Advisory SSA:2006-178-02 gnupg DoS
Slackware Advisory SSA:2005-170-01 New Java packages

Slackware Advisory SSA:2008-210-08 openssl

Take action and discover your vulnerabilities