Summary
The remote host is missing an update as announced
via advisory SSA:2009-014-01.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-014-01
Insight
New openssl packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a security issue when connecting to an SSL/TLS server that uses a certificate containing a DSA or ECDSA key.
More details about this issue may be found here:
http://www.openssl.org/news/secadv_20090107.txt
http://www.ocert.org/advisories/ocert-2008-016.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5077
Severity
Classification
-
CVE CVE-2008-5077 -
CVSS Base Score: 5.8
AV:N/AC:M/Au:N/C:N/I:P/A:P
Related Vulnerabilities