Mandriva Update For Openssl0.9.8 MDVSA-2012:064 (openssl0.9.8) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

It was discovered that the fix for CVE-2012-2110 (MDVSA-2012:060) was not sufficient to correct the issue for OpenSSL 0.9.8. The updated packages have been upgraded to the 0.9.8w version which is not vulnerable to this issue.

Affected

openssl0.9.8 on Mandriva Linux 2010.1

Severity

Classification

CVE CVE-2012-2110, CVE-2012-2131
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:150 (libtiff)
Mandrake Security Advisory MDVSA-2009:128 (libmodplug)
Mandrake Security Advisory MDVSA-2009:065 (php4)
Mandrake Security Advisory MDVSA-2009:142 (jasper)
Mandrake Security Advisory MDVSA-2009:179 (mysql)

Mandriva Update for openssl0.9.8 MDVSA-2012:064 (openssl0.9.8)

Take action and discover your vulnerabilities