Ubuntu Update For Pyopenssl USN-1965-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

It was discovered that pyOpenSSL did not properly handle certificates with NULL characters in the Subject Alternative Name field. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.

Affected

pyopenssl on Ubuntu 13.04 , Ubuntu 12.10 , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2013-September/002253.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-4314
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for acpi-support USN-2297-1
Ubuntu Update for curl USN-2048-2
Ubuntu Update for apache2 USN-1903-1
Ubuntu Update for aptdaemon vulnerability USN-1068-1
Ubuntu Update for compiz vulnerability USN-537-2

Ubuntu Update for pyopenssl USN-1965-1

Take action and discover your vulnerabilities