Input validation

Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent packages. A remote unauthenticated attacker can bypass packages relying on netmask to filter IPs...

Fedora 12 : openconnect-2.26-1.fc12 (2010-18032)

This update implements DTLS rekeying, elides the session cookie from debugging output by default, and fixes a potential crash on relative HTTP redirect during authentication. It also fixes a problem which occurs when changing VPN hosts in the NetworkManager auth-dialog, after the connection to th...