rpm package
opensuse/socat&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/socat&distro=openSUSE%20Tumbleweed
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-54661 | Cri | 9.8 | < 1.8.0.2-1.1 | 1.8.0.2-1.1 | Dec 4, 2024 | readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file. | |
| CVE-2015-4000 | Low | 3.7 | < 1.7.3.1-2.7 | 1.7.3.1-2.7 | May 21, 2015 | The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by D | |
| CVE-2013-3571 | — | < 1.7.3.1-2.7 | 1.7.3.1-2.7 | May 8, 2014 | socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service (file descriptor consumption) via multiple request that are refused based on the (1) sourceport, (2) | ||
| CVE-2014-0019 | — | < 1.7.3.1-2.7 | 1.7.3.1-2.7 | Feb 4, 2014 | Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line. |
- affected < 1.8.0.2-1.1fixed 1.8.0.2-1.1
readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.
- affected < 1.7.3.1-2.7fixed 1.7.3.1-2.7
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by D
- CVE-2013-3571May 8, 2014affected < 1.7.3.1-2.7fixed 1.7.3.1-2.7
socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service (file descriptor consumption) via multiple request that are refused based on the (1) sourceport, (2)
- CVE-2014-0019Feb 4, 2014affected < 1.7.3.1-2.7fixed 1.7.3.1-2.7
Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line.