VYPR

rpm package

opensuse/socat&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/socat&distro=openSUSE%20Tumbleweed

Vulnerabilities (4)

  • CVE-2024-54661CriDec 4, 2024
    affected < 1.8.0.2-1.1fixed 1.8.0.2-1.1

    readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.

  • CVE-2015-4000LowMay 21, 2015
    affected < 1.7.3.1-2.7fixed 1.7.3.1-2.7

    The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by D

  • CVE-2013-3571May 8, 2014
    affected < 1.7.3.1-2.7fixed 1.7.3.1-2.7

    socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service (file descriptor consumption) via multiple request that are refused based on the (1) sourceport, (2)

  • CVE-2014-0019Feb 4, 2014
    affected < 1.7.3.1-2.7fixed 1.7.3.1-2.7

    Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line.