SUSE-SU-2021:0772-1 Security update for stunnel

This update for stunnel fixes the following issues: - Security fix: bsc1177580, bsc1182529, CVE-2021-20230 'redirect' option does not properly handle 'verifyChain = yes'...

OPENSUSE-SU-2021:0160-1 Security update for stunnel

This update for stunnel fixes the following issues: Security issue fixed: - The 'redirect' option was fixed to properly handle 'verifyChain = yes' bsc1177580. Non-security issues fixed: - Fix startup problem of the stunnel daemon bsc1178533 - update to 5.57: Security bugfixes New features - New...

MGASA-2014-0144 Updated stunnel package fixes security vulnerability

A flaw was found in the way stunnel, a socket wrapper which can provide SSL support to ordinary applications, performed reinitialization of PRNG after fork. When accepting a new connection, the server forks and the child process handles the request. The RANDbytes function of openssl doesn't reset...

Important: Red Hat Security Advisory: stunnel security update

Updated stunnel packages are now available. These updates address problems stemming from improper use of non-reentrant functions in signal handlers. Stunnel is a wrapper for network connections. It can be used to tunnel an unencrypted network connection over an encrypted connection encrypted usin...

Stunnel-3.x Daemon Hijacking

Product: Stunnel Versions: = 3.24, 4.00 URL: http://stunnel.mirt.net Impact: Daemon Hijacking Bug class: Leaked Descriptor Vendor notified: Yes Fix available: Yes Date: 09/03/03 Issue: ====== Stunnel leaks a critical file descriptor that can be used to takeover hijack stunnel's service. Details:...

Important: Red Hat Security Advisory: stunnel security update

Updated stunnel packages are now available. These updates correct a potential vulnerability in stunnel's signal handling. Stunnel is a wrapper for network connections. It can be used to tunnel an unencrypted network connection over a secure connection encrypted using SSL or TLS or to provide a...