SUSE Linux Information for VU#744929

mod_ssl fails to properly enforce client certificates authentication

Status

Affected

Vendor Statement

Our customers can update their systems by using the YaST Online Update (YOU) tool or by installing the RPM file (apache2) directly after downloading it from

http://www.novell.com/de-de/linux/download/updates/index.html

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

SUSE has released SUSE Security Advisory SUSE-SA:2005:052 with vulnerability and remediation instructions for this and some other recent Apache vulnerabilities.

If you have feedback, comments, or additional information about this vulnerability, please send us email.