14 matches found
Slackware: Security Advisory (SSA:2018-116-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:1888-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OpenVPN 2.4.x < 2.4.6 Denial of Service Vulnerability (Windows)
According to its self-reported version number, the version of OpenVPN installed on the remote Windows host is affected by a denial of service DoS vulnerability in its interactive service helper component due to an invalid level of validation for incoming requests. An unauthenticated, local attack...
openSUSE Security Update : openvpn (openSUSE-2019-507)
This update for openvpn fixes the following issues : - CVE-2018-9336: Fix potential double-free in Interactive Service could lead to denial of service bsc1090839. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
SUSE SLED15 / SLES15 Security Update : openvpn (SUSE-SU-2018:1888-1)
This update for openvpn fixes the following issues : - CVE-2018-9336: Fix potential double-free in Interactive Service could lead to denial of service bsc1090839. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...
openSUSE: Security Advisory for openvpn (openSUSE-SU-2018:1912-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
MGASA-2018-0329 Updated openvpn packages fix security vulnerability
Updated openvpn packages fix security vulnerability: Fix potential double-free in Interactive Service could lead to denial of service CVE-2018-9336...
openSUSE Security Update : openvpn (openSUSE-2018-705)
This update for openvpn fixes the following issues : - CVE-2018-9336: Fix potential double-free in Interactive Service could lead to denial of service bsc1090839. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Security update for openvpn (moderate)
This update for openvpn fixes the following issues: - CVE-2018-9336: Fix potential double-free in Interactive Service could lead to denial of service bsc1090839. This update was imported from the SUSE:SLE-15:Update update project...
SUSE-SU-2018:1888-1 Security update for openvpn
This update for openvpn fixes the following issues: - CVE-2018-9336: Fix potential double-free in Interactive Service could lead to denial of service bsc1090839...
CVE-2018-9336
OpenVPN 2.4.x prior to 2.4.6 is affected by CVE-2018-9336 due to a double-free in the interactive service helper (openvpnserv.exe). A local attacker can trigger memory corruption leading to denial of service and possibly privilege escalation. The fix is in OpenVPN 2.4.6 and later; upgrading to th...
CVE-2018-9336
openvpnserv.exe aka the interactive service helper in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other...
[slackware-security] openvpn
New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openvpn-2.4.6-i586-1slack14.2.txz: Upgraded. This is a security update fixing a potential double-fre...
Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : openvpn (SSA:2018-116-01)
New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-116-01. The text itself is...