VYPR

rpm package

suse/oath-toolkit&distro=SUSE Linux Enterprise Module for Package Hub 15 SP5

pkg:rpm/suse/oath-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5

Vulnerabilities (2)

  • CVE-2020-12823CriMay 12, 2020
    affected < 2.6.2-150000.3.5.1fixed 2.6.2-150000.3.5.1

    OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c.

  • CVE-2020-12105MedApr 23, 2020
    affected < 2.6.2-150000.3.5.1fixed 2.6.2-150000.3.5.1

    OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks.