Lucene search
K

18 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2017:1718-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.13892EPSS
Exploits2References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2017:1622-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.13892EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2017/06/30 12:0 a.m.43 views

openSUSE Security Update : openvpn (openSUSE-2017-717) (SWEET32)

This update for openvpn fixes the following issues : - CVE-2016-6329: Show which ciphers should no longer be used in openvpn --show-ciphers bsc995374 - CVE-2017-7478: openvpn: Authenticated user can DoS server by using a big payload in PCONTROL bsc1038709 - CVE-2017-7479: openvpn: Denial of Servi...

7.5CVSS6.5AI score0.13892EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2017/06/28 12:0 a.m.35 views

Debian DSA-3900-1 : openvpn - security update

Several issues were discovered in openvpn, a virtual private network application. - CVE-2017-7479 It was discovered that openvpn did not properly handle the rollover of packet identifiers. This would allow an authenticated remote attacker to cause a denial-of-service via application crash. -...

7.5CVSS7.2AI score0.04759EPSS
Exploits0References12
Debian
Debian
added 2017/06/27 7:51 p.m.30 views

[SECURITY] [DSA 3900-1] openvpn security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3900-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 27, 2017 https://www.debian.org/security/faq -...

5CVSS3.3AI score0.04759EPSS
Exploits0
Debian
Debian
added 2017/06/27 7:51 p.m.51 views

[SECURITY] [DSA 3900-1] openvpn security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3900-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 27, 2017 https://www.debian.org/security/faq -...

7.5CVSS7.6AI score0.04759EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/06/27 12:0 a.m.34 views

Debian Security Advisory DSA 3900-1 (openvpn - security update)

Several issues were discovered in openvpn, a virtual private network application. CVE-2017-7479 It was discovered that openvpn did not properly handle the rollover of packet identifiers. This would allow an authenticated remote attacker to cause a denial-of-service via application crash...

5CVSS0.3AI score0.04759EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/06/26 12:0 a.m.33 views

Debian: Security Advisory (DSA-3900-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.04759EPSS
Exploits0References3
OSV
OSV
added 2017/06/22 6:2 p.m.5 views

USN-3339-1 openvpn vulnerabilities

Karthikeyan Bhargavan and Gaëtan Leurent discovered that 64-bit block ciphers are vulnerable to a birthday attack. A remote attacker could possibly use this issue to recover cleartext data. Fixing this issue requires a configuration change to switch to a different cipher. This update adds a warni...

7.5CVSS7AI score0.0594EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/06/21 12:0 a.m.44 views

SUSE SLED12 / SLES12 Security Update : openvpn (SUSE-SU-2017:1622-1) (SWEET32)

This update for openvpn fixes the following issues : - CVE-2016-6329: Show which ciphers should no longer be used in openvpn --show-ciphers bsc995374 - CVE-2017-7478: openvpn: Authenticated user can DoS server by using a big payload in PCONTROL bsc1038709 - CVE-2017-7479: openvpn: Denial of Servi...

7.5CVSS6.6AI score0.13892EPSS
Exploits2References11
Mageia
Mageia
added 2017/06/01 9:25 p.m.39 views

Updated openvpn packages fix security vulnerability

It was discovered that OpenVPN improperly triggered an assert when receiving an oversized control packet in some situations. A remote attacker could use this to cause a denial of service server or client crash CVE-2017-7478. It was discovered that OpenVPN improperly triggered an assert when packe...

7.5CVSS3.4AI score0.13892EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2017/05/25 12:0 a.m.40 views

Fedora Update for openvpn FEDORA-2017-f426acf49d

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.13892EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2017/05/24 12:0 a.m.31 views

Fedora 24 : openvpn (2017-f426acf49d)

Security fix for two remote DoS issues CVE-2017-7478, CVE-2017-7479 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS7AI score0.13892EPSS
Exploits2References3
Debian
Debian
added 2017/05/16 2:17 p.m.46 views

[SECURITY] [DLA 944-1] openvpn security update

Package : openvpn Version : 2.2.1-8+deb7u4 CVE ID : CVE-2017-7479 Denial of Service due to Exhaustion of Packet-ID counter An authenticated client can cause the servers the packet-id counter to roll over, which would lead the server process to hit an ASSERT and stop running. To make the server hi...

6.5CVSS6.9AI score0.01867EPSS
Exploits0
CVE
CVE
added 2017/05/15 6:0 p.m.135 views

CVE-2017-7479

OpenVPN is affected: versions before 2.3.15 and before 2.4.2 fail to correctly handle rollover of the packet-ID counter, enabling an authenticated attacker to cause a denial-of-service via application crash. Root cause is improper handling of packet-ID rollover. The issue is mitigated by upgradin...

6.5CVSS6.6AI score0.01867EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2017/05/15 12:0 a.m.32 views

Fedora Update for openvpn FEDORA-2017-0d0f18140a

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.13892EPSS
Exploits2References2
ALT Linux
ALT Linux
added 2017/05/14 12:0 a.m.60 views

Security fix for the ALT Linux 9 package openvpn version 2.4.2-alt1

May 14, 2017 Nikolay A. Fetisov 2.4.2-alt1 - New version - Security fixes: + CVE-2017-7478 Don't assert out on receiving too-large control packets + CVE-2017-7479 Drop packets instead of assert out if packet id rolls over...

5CVSS7.2AI score0.13892EPSS
Exploits2
ArchLinux
ArchLinux
added 2017/05/13 12:0 a.m.58 views

[ASA-201705-16] openvpn: denial of service

Arch Linux Security Advisory ASA-201705-16 ========================================== Severity: High Date : 2017-05-13 CVE-ID : CVE-2017-7478 CVE-2017-7479 Package : openvpn Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-271 Summary ======= The package openvpn...

7.5CVSS1.2AI score0.13892EPSS
Exploits2References6
Rows per page
Query Builder