CLSA-2025-1744710425 Fix CVE(s): CVE-2024-5594

SECURITY UPDATE: Improper PUSHREPLY sanitization allows attackers to inject arbitrary data into third-party executables - debian/patches/CVE-2024-5594.patch: Properly handle null bytes and invalid characters in control - CVE-2024-5594 UPDATE CERTIFICATES: Renew sample keys -...

Astra Linux – Vulnerability in OpenVPN

Before version 2.6.11, OpenVPN did not properly sanitize PUSHREPLY messages. This vulnerability could be exploited by attackers who control the server, allowing them to inject unexpected arbitrary data into client logs...

SUSE CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

DEBIAN-CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

ALPINE-CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

UBUNTU-CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

SUSE CVE-2005-3848

Memory leak in the icmppushreply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service memory consumption via a large number of crafted packets that cause the ipappenddata function to fail, aka "DST leak in icmppushreply."...

The vulnerability of the deferred_auth function in OpenVPN software allows a hacker to force the server to send the PUSH_REPLY message with VPN configuration details before sending the AUTH_FAILED message.

The vulnerability of the deferredauth function in OpenVPN software relates to bypassing authentication due to a fundamental error. Exploiting this vulnerability allows a remote attacker to force the server to send a PUSHREPLY message containing VPN configuration details before sending the...

PT-2021-2690 · Openvpn +5 · Openvpn +5

Name of the Vulnerable Software and Affected Versions: OpenVPN versions 2.5.1 and earlier Description: The issue allows a remote attacker to bypass authentication and access control channel data on servers configured with deferred authentication. This can potentially be used to trigger further...

security flaw

Memory leak in the icmppushreply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service memory consumption via a large number of crafted packets that cause the ipappenddata function to fail, aka "DST leak in icmppushreply."...

security flaw

Memory leak in the icmppushreply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service memory consumption via a large number of crafted packets that cause the ipappenddata function to fail, aka "DST leak in icmppushreply."...

CVE-2005-3848

Memory leak in the icmppushreply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service memory consumption via a large number of crafted packets that cause the ipappenddata function to fail, aka "DST leak in icmppushreply."...