IETF X.509 SSL Certificate Signature Collision Vulnerability on SysLog - Port 6514

To: debian-user@lists.debian.org
Subject: IETF X.509 SSL Certificate Signature Collision Vulnerability on SysLog - Port 6514
From: "Mauricio Borges" <borgesm@br.ibm.com>
Date: Fri, 25 Jan 2019 15:25:05 -0300
Message-id: <[🔎] OFCE4BA913.9FAF4AC8-ON8325838D.0060174B-8325838D.00652CDA@notes.na.collabserv.com>

Hello Support!
Any idea how to fix or troubleshoot this vulnerability ?

-----------------------------------------vulnerability-----------------------------------------------------------------------------------------
[medium] [6514/101915888/tls-syslog?] IETF X.509 SSL Certificate Signature Collision Vulnerability
The following certificates were part of the certificate chain sent by the remote host, but contain hashes that are considered to be weak.

------------------------------------------Linux version----------------------------------------------------------------------------------------
root@atlbyzns01:~# uname -a
Linux atlbyzns01 4.9.0-8-amd64 #1 SMP Debian 4.9.110-3+deb9u4 (2018-08-21) x86_64 GNU/Linux

------------------------------------------tls version----------------------------------------------------------------------------------------
openssl.exe s_client -connect xx.xx.xx.xx:6514
CONNECTED(00000104)
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384

Regards,
Mauricio Borges
IBM Certified IT Specialist, Domino & iSeries Administrator
Global Business Services - AppOps
IBM Services
borgesm@br.ibm.com

Reply to:

Prev by Date: Enet names
Next by Date: Re: missing avidemux Debian package
Previous by thread: Re: Enet names
Next by thread: Partition information as text file?
Index(es):
- Date
- Thread