rpm package
opensuse/openconnect&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/openconnect&distro=openSUSE%20Tumbleweed
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-12823 | Cri | 9.8 | < 8.10-2.6 | 8.10-2.6 | May 12, 2020 | OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c. | |
| CVE-2020-12105 | Med | 5.9 | < 8.10-2.6 | 8.10-2.6 | Apr 23, 2020 | OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks. | |
| CVE-2013-7098 | Cri | 9.8 | < 7.07-1.3 | 7.07-1.3 | Feb 13, 2020 | OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection. | |
| CVE-2012-6128 | — | < 7.07-1.3 | 7.07-1.3 | Feb 24, 2013 | Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie list in a response. | ||
| CVE-2012-3291 | — | < 7.07-1.3 | 7.07-1.3 | Jun 7, 2012 | Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner. |
- affected < 8.10-2.6fixed 8.10-2.6
OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c.
- affected < 8.10-2.6fixed 8.10-2.6
OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks.
- affected < 7.07-1.3fixed 7.07-1.3
OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection.
- CVE-2012-6128Feb 24, 2013affected < 7.07-1.3fixed 7.07-1.3
Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie list in a response.
- CVE-2012-3291Jun 7, 2012affected < 7.07-1.3fixed 7.07-1.3
Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.