-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2015:096
 http://www.mandriva.com/en/support/security/
 _______________________________________________________________________

 Package : stunnel
 Date    : March 28, 2015
 Affected: Business Server 2.0
 _______________________________________________________________________

 Problem Description:

 Updated stunnel package fixes security vulnerability:
 
 A flaw was found in the way stunnel, a socket wrapper which can provide
 SSL support to ordinary applications, performed (re)initialization of
 PRNG after fork. When accepting a new connection, the server forks and
 the child process handles the request. The RAND_bytes() function of
 openssl doesn't reset its state after the fork, but seeds the PRNG
 with the output of time(NULL). The most important consequence is
 that servers using EC (ECDSA) or DSA certificates may