SUSE CVE-2017-12166

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution...

Debian DLA-2992-1 : openvpn - LTS security update

The remote Debian 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-2992 advisory. - OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code...

Mageia: Security Advisory (MGASA-2017-0372)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:3177-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2839-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 27 : openvpn (2017-5882331351)

Maintenance release with several minor upstream bugfixes and a security fix related to legacy configurations deploying the deprecated key-method 1 configuration option CVE-2017-12166. From this update of, OpenVPN will use the lz4 compression library from Fedora instead of the upstream bundled...

SUSE-SU-2017:3177-1 Security update for openvpn-openssl1

This update for openvpn-openssl1 fixes the following issues: Security issue fixed: - CVE-2017-12166: Fix remote buffer overflow bsc1060877...

Security fix for the ALT Linux 9 package openvpn version 2.4.4-alt1

Nov. 18, 2017 Nikolay A. Fetisov 2.4.4-alt1 - New version - Security fixes: + CVE-2017-12166: Buffer overflow when using obsolete '--key-method 1'...

Amazon Linux AMI : openvpn (ALAS-2017-920)

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution. CVE-2017-12166 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon...

Medium: openvpn

Issue Overview: OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution. CVE-2017-12166 Affected Packages: openvpn Issue Correction: Run yum update openvpn or yum update --advisory...

Fedora Update for openvpn FEDORA-2017-2aa4d11993

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for openvpn (openSUSE-SU-2017:2892-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : openvpn (openSUSE-2017-1202)

This update for openvpn fixes the following issues : - CVE-2017-12166: Lack of bound check in readkey in old legacy key handling before using values could be used for a remote buffer overflow bsc1060877. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C...

SUSE SLED12 / SLES12 Security Update : openvpn (SUSE-SU-2017:2839-1)

This update for openvpn fixes the following issues : - CVE-2017-12166: Lack of bound check in readkey in old legacy key handling before using values could be used for a remote buffer overflow bsc1060877. Note that Tenable Network Security has extracted the preceding description block directly fro...

SUSE-SU-2017:2839-1 Security update for openvpn

This update for openvpn fixes the following issues: - CVE-2017-12166: Lack of bound check in readkey in old legacy key handling before using values could be used for a remote buffer overflow bsc1060877...

MGASA-2017-0372 Updated openvpn packages fix security vulnerability

The bounds check in readkey was performed after using the value, instead of before. If 'key-method 1' is used, this allowed an attacker to send a malformed packet to trigger a stack buffer overflow. Note that 'key-method 1' has been replaced by 'key method 2' as the default in OpenVPN 2.0...

OpenVPN read_key Stack Based Buffer Overflow (CVE-2017-12166)

A stack-based buffer overflow vulnerability exists in OpenVPN. The vulnerability is due to a lack of bounds check on the length of key and HMAC lengths provided by the client. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted PCONTROLV1 message to a target...

Fedora Update for openvpn FEDORA-2017-700915e34f

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVPN 2.x < 2.3. 18/ 2.4.x < 2.4.4 Buffer Overflow Vulnerability w/ key-method 1

According to its self-reported version number, the version of OpenVPN installed on the remote host is affected by an error related to a weakness in the 'key-method 1' implementation which could allow buffer overflow attacks and result in unexpected code execution C Tenable Network Security, Inc...

CVE-2017-12166

CVE-2017-12166 affects OpenVPN prior to 2.3.3 and prior to 2.4.4, due to a buffer overflow in the read_key/key-method handling (read_key() stack-based overflow reported by security advisories). Exploitation could lead to remote code execution. Remediation across tracked disclosures: upgrade to Op...