The remote host is missing an update to openssl announced via advisory FEDORA-2009-5412.
Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update openssl' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-5412
The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. Update Information: Security update fixing DoS bugs in DTLS code. CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 ChangeLog: * Thu May 21 2009 Tomas Mraz 0.9.8g-14 - fix CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 (DTLS DoS problems) (#501253, #501254, #501572) * Tue Apr 21 2009 Tomas Mraz 0.9.8g-13 - support compatibility DTLS mode for CISCO AnyConnect (#464629) - fix crash when parsing malformed mime headers in the smime app - provide openssl-static by the devel subpackage (#496372) * Wed Jan 7 2009 Tomas Mraz 0.9.8g-12 - fix CVE-2008-5077 - incorrect checks for malformed signatures (#476671) - add -no_ign_eof option (#462393)
CVE CVE-2008-5077, CVE-2009-1377, CVE-2009-1378, CVE-2009-1379
CVSS Base Score: 5.8