15 matches found
SUSE SLED15: liboath-devel / liboath0 / libopenconnect5 / libpskc-devel / etc (SUSE-SU-2024:0317-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0317-1 advisory. - Update to release 9.12: Explicitly reject overly long tun device names. Increase maximum input...
Mageia: Security Advisory (MGASA-2020-0251)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : openconnect (openSUSE-2020-1027)
This update for openconnect fixes the following issues : - CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which could have led to denial of service bsc1171862. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descripti...
openSUSE: Security Advisory for openconnect (openSUSE-SU-2020:1027-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for openconnect (moderate)
openSUSE Security Update: Security update for openconnect Announcement ID: openSUSE-SU-2020:1027-1 Rating: moderate References: 1171862 Cross-References: CVE-2020-12823 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
openSUSE Security Update : openconnect (openSUSE-2020-997)
This update for openconnect fixes the following issues : - CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which could have led to denial of service bsc1171862. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descripti...
openSUSE: Security Advisory for openconnect (openSUSE-SU-2020:0997-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:0997-1 Security update for openconnect
This update for openconnect fixes the following issues: - CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which could have led to denial of service bsc1171862. This update was imported from the SUSE:SLE-15:Update update project...
Security update for openconnect (moderate)
openSUSE Security Update: Security update for openconnect Announcement ID: openSUSE-SU-2020:0997-1 Rating: moderate References: 1171862 Cross-References: CVE-2020-12823 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
SUSE-SU-2020:1807-1 Security update for openconnect
This update for openconnect fixes the following issues: - CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which could have led to denial of service bsc1171862...
Updated openconnect packages fix security vulnerability
Updated openconnect packages fix security vulnerabilities: OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks CVE-2020-12105. OpenConnect 8.09 has a buffer overflow, causing a denial of...
Fedora 31 : openconnect (2020-2af15c566e)
Update to 8.10 release CVE-2020-12823 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...
Fedora 30 : openconnect (2020-bc22f06aa3)
Update to 8.10 release CVE-2020-12823 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...
[ASA-202005-11] openconnect: arbitrary code execution
Arch Linux Security Advisory ASA-202005-11 ========================================== Severity: Low Date : 2020-05-19 CVE-ID : CVE-2020-12823 Package : openconnect Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1157 Summary ======= The package openconnect...
CVE-2020-12823
OpenConnect 8.09 contains a buffer overflow in get_cert_name (gnutls.c) triggered by crafted certificate data, leading to denial of service (crash) and potential further impact. Multiple connected advisories confirm the issue and note that OpenConnect 8.10 fixes it (upgrading is recommended). The...