Unrated severityNVD Advisory· Published Jun 7, 2012· Updated Apr 29, 2026
CVE-2012-3291
CVE-2012-3291
Description
Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.
Affected products
27cpe:2.3:a:infradead:openconnect:*:*:*:*:*:*:*:*+ 26 more
- cpe:2.3:a:infradead:openconnect:*:*:*:*:*:*:*:*range: <=3.17
- cpe:2.3:a:infradead:openconnect:1.00:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:1.20:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:1.30:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:1.40:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.00:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.01:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.11:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.12:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.21:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.22:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.23:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.24:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.25:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:2.26:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.00:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.01:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.02:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.11:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.12:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.13:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.14:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.15:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:3.16:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- lists.fedoraproject.org/pipermail/package-announce/2012-May/079747.htmlnvd
- lists.opensuse.org/opensuse-updates/2013-06/msg00186.htmlnvd
- www.debian.org/security/2012/dsa-2495nvd
- www.infradead.org/openconnect/changelog.htmlnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17242nvd
News mentions
0No linked articles in our index yet.