Slackware Advisory SSA:2003-273-01 OpenSSL Security Update Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2003-273-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2003-273-01

Insight

Upgraded OpenSSL packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix problems with ASN.1 parsing which could lead to a denial of service. It is not known whether the problems could lead to the running of malicious code on the server, but it has not been ruled out. We recommend sites that use OpenSSL upgrade to the fixed packages right away.

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2003-308-01 apache security update
Slackware Advisory SSA:2004-136-01 mc
Slackware Advisory SSA:2004-299-01 apache, mod_ssl, php
Slackware Advisory SSA:2003-346-01 lftp security update
Slackware Advisory SSA:2003-259-02 ProFTPD Security Advisory

Slackware Advisory SSA:2003-273-01 OpenSSL security update

Take action and discover your vulnerabilities