SUSE-SU-2018:1768-1 -- SLES nagios-nrpe, nagios-plugins-nrpeID: oval:org.secpod.oval:def:89043770 | Date: (C)2021-03-05 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for nagios-nrpe fixes one issue. This security issue was fixed: - CVE-2015-4000: Prevent Logjam. The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, did not properly convey a DHE_EXPORT choice, which allowed man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |
Product: |
nagios-nrpe |
nagios-plugins-nrpe |